ssrf (7)
- Cross Site Port Attacks - XSPA - Part 1 - November 7, 2012
- Cross Site Port Attacks - XSPA - Part 2 - November 13, 2012
- Cross Site Port Attacks - XSPA - Part 3 - November 14, 2012
- XSPA / SSRF Vulnerability with the Adobe Omniture Web Application - April 23, 2013
- XSPA / SSRF bug with Facebook’s Developer Web Application - May 10, 2013
- XSPA / SSRF Vulnerability with the Yahoo! Developer Network - June 27, 2013
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
poc (6)
- XSS to RCE – using WordPress as an example - July 17, 2016
- Nodejs RCE and a simple reverse shell - August 23, 2016
- A Windows UAC Bypass using Device Manager - May 18, 2017
- Executing Windows malware in Windows Subsystem for Linux (Bashware) - October 24, 2017
- Exploiting a Boolean Based SQL Injection using Burp Suite Intruder - December 27, 2017
- How do I download files in a Remote Desktop Session over SSH - July 27, 2019
xspa (6)
- Cross Site Port Attacks - XSPA - Part 1 - November 7, 2012
- Cross Site Port Attacks - XSPA - Part 2 - November 13, 2012
- Cross Site Port Attacks - XSPA - Part 3 - November 14, 2012
- XSPA / SSRF Vulnerability with the Adobe Omniture Web Application - April 23, 2013
- XSPA / SSRF bug with Facebook’s Developer Web Application - May 10, 2013
- XSPA / SSRF Vulnerability with the Yahoo! Developer Network - June 27, 2013
aws (3)
- Raining shells in AWS by chaining vulnerabilities - OWASP Bay Area Meetup - August 12, 2019
- What are these 'reserved' set of security-credentials in AWS? - April 26, 2020
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
iam (3)
- Raining shells in AWS by chaining vulnerabilities - OWASP Bay Area Meetup - August 12, 2019
- What are these 'reserved' set of security-credentials in AWS? - April 26, 2020
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
bashware (2)
- Executing Windows malware in Windows Subsystem for Linux (Bashware) - October 24, 2017
- Exploiting a Boolean Based SQL Injection using Burp Suite Intruder - December 27, 2017
bugbounty (2)
- Twitter Wipe Addressbook CSRF Vulnerability - May 16, 2012
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
csrf (2)
- Apache Archiva Multiple XSS & CSRF Vulnerabilities - May 30, 2011
- Auto submit (onload) a HTML Form with an input field called 'submit' - CSRF PoC - November 5, 2013
process-explorer (2)
- The Case of the Persistent Executable - July 7, 2009
- The Case of the Intelligent Spambot - July 22, 2009
security-credentials (2)
- What are these 'reserved' set of security-credentials in AWS? - April 26, 2020
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
walkthrough (2)
- c0c0n Security Conference 2011 - CTF Walkthrough - October 16, 2011
- How do I download files in a Remote Desktop Session over SSH - July 27, 2019
windows (2)
- psexec using a local admin account to a UAC enabled system - February 20, 2016
- How do I download files in a Remote Desktop Session over SSH - July 27, 2019
writeup (2)
- c0c0n Security Conference 2011 - CTF Walkthrough - October 16, 2011
- Twitter Wipe Addressbook CSRF Vulnerability - May 16, 2012
xss (2)
- Multiple Joomla! XSS Vulnerabilities - CVE-2010-1649 - June 11, 2010
- Apache Archiva Multiple XSS & CSRF Vulnerabilities - May 30, 2011
convertsidtostringsid (1)
- Get username from PID in VB.NET - December 3, 2015
ctf (1)
- c0c0n Security Conference 2011 - CTF Walkthrough - October 16, 2011
gettokeninformation (1)
- Get username from PID in VB.NET - December 3, 2015
metasploit (1)
- psexec using a local admin account to a UAC enabled system - February 20, 2016
mssql (1)
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
mute (1)
- Volume Mute and SendMessage() Fun - November 9, 2015
mysql (1)
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
openprocess (1)
- Get username from PID in VB.NET - December 3, 2015
openprocesstoken (1)
- Get username from PID in VB.NET - December 3, 2015
oracle (1)
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
pdf (1)
- PDF password cracking using Python - June 28, 2016
postgresql (1)
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
process-monitor (1)
- The Case of the Intelligent Spambot - July 22, 2009
python (1)
- PDF password cracking using Python - June 28, 2016
scripting (1)
- PDF password cracking using Python - June 28, 2016
sendmessage (1)
- Volume Mute and SendMessage() Fun - November 9, 2015
shell (1)
- Simple websockets based webshell - February 18, 2015
sqli (1)
- Using SQL Injection to perform SSRF/XSPA attacks - June 27, 2020
uac (1)
- psexec using a local admin account to a UAC enabled system - February 20, 2016
webshell (1)
- XSS to RCE – using WordPress as an example - July 17, 2016
websocket (1)
- Simple websockets based webshell - February 18, 2015
windows-registry (1)
- psexec using a local admin account to a UAC enabled system - February 20, 2016
wordpress (1)
- XSS to RCE – using WordPress as an example - July 17, 2016
xwh (1)
- Simple websockets based webshell - February 18, 2015
yahoo (1)
- XSPA / SSRF Vulnerability with the Yahoo! Developer Network - June 27, 2013