Skip to content
GainSec

GainSec

Where OSINT, Hacking, Penetration Testing, Privacy, Piracy, Information Security, Cyber Security and Law are a lifestyle.

  • Home
  • Projects
  • Shop
  • Services
  • Press
  • Inquiries
  • About Me
  • Archives
  • FAQ
  • Cart
  • $0.00 0 items

Tag: Penetration Testing

CVE-2022-35142, CVE-2022-35143, CVE-2022-35144 – DoS, XSS and Weak Password Policy in Renato a Markdown powered knowledge base

Multiple new CVEs discovered and disclosed! XSS, DoS and a weak password policy!

gainsec CVE, Web Application Pen Testing Leave a comment August 4, 2022August 4, 2022

CVE-2022-34613, CVE-2022-34618, CVE-2022-34619 – Multiple XSS (And more) in Mealie

Multiple new CVEs discovered and disclosed! XSS, file uploads and more!

gainsec CVE, Web Application Pen Testing Leave a comment August 2, 2022August 2, 2022

CVE-2022-34625 – Server-Side Template Injection to Remote Code Execution (SSTI) to (RCE) in Mealie – A lesson in patience

A detailed walkthrough of CVE-2022-34625 aka a Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)

gainsec CVE, Web Application Pen Testing Leave a comment August 2, 2022August 2, 2022

Should I add this Repo to TreeHouse Wordlists?

You tell me what you think of this wordlist repo? Is it worth adding?

gainsec Penetration Testing, TreeHouse Wordlists Leave a comment April 5, 2022April 4, 2022

CLI Web Discovery Alternative to Dirb, Dirsearch, Etc

A great alternative to have for web discovery during web app pen tests or bug bounties.

gainsec Bug Bounty, Penetration Testing, Web Application Pen Testing Leave a comment March 21, 2022March 20, 2022

All in One RF/HID reader/writer smaller then the ProxMark?!

A great and useful device for any physical penetration test or hardware hacking engagement.

gainsec Hardware, Physical Penetration Test, Physical Security Leave a comment March 17, 2022March 16, 2022

Custom Formula CSV XLS XLSX Injection Wordlist

Created my own Formula/CSV/XLS/XLSX formula injection wordlist and added it to TreeHouse wordlists!

gainsec TreeHouse Wordlists, Web Application Pen Testing Leave a comment February 21, 2022February 19, 2022

OneListForAll added to Treehouse Wordlists!

An awesome wordlist repo added to TreeHouse Wordlists! Yay!

gainsec Penetration Testing, Web Application Pen Testing Leave a comment February 11, 2022February 5, 2022

Great example of the dangers of an Android app compiled with Debugging enabled

A concrete example of the dangers of compiling an Android application with debugging enabled.

gainsec Android, Android Hacking, Mobile Penetration Testing Leave a comment February 3, 2022February 2, 2022

STOP USING DEFAULT PASSWORDS

A large trove of default username and passwords for all kinds of products!

gainsec External Penetration Tests, Internal Penetration Test, Penetration Testing, Web Application Pen Testing Leave a comment January 16, 2022January 15, 2022

Posts navigation

Older posts

Twitter Feed

My Tweets

Follow Us

  • GitHub
  • Twitter
  • Instagram
  • Tumblr
  • Pinterest
  • LinkedIn
  • YouTube
  • LinkedIn
  • Twitch
  • Facebook
  • Etsy
 

Loading Comments...