Multiple new CVEs discovered and disclosed! XSS, DoS and a weak password policy!
Multiple new CVEs discovered and disclosed! XSS, file uploads and more!
A detailed walkthrough of CVE-2022-34625 aka a Server-Side Template Injection (SSTI) to Remote Code Execution (RCE)
You tell me what you think of this wordlist repo? Is it worth adding?
A great alternative to have for web discovery during web app pen tests or bug bounties.
A great and useful device for any physical penetration test or hardware hacking engagement.
Created my own Formula/CSV/XLS/XLSX formula injection wordlist and added it to TreeHouse wordlists!
An awesome wordlist repo added to TreeHouse Wordlists! Yay!
A concrete example of the dangers of compiling an Android application with debugging enabled.
A large trove of default username and passwords for all kinds of products!