PinnedThe Holistic Approach to Penetration Testing: Strengthening Your Client’s Cybersecurity PosturePentest and offensive security has been recognized as an essential addition for assessing an organization’s vulnerabilities and security…Nov 8, 2023Nov 8, 2023
PinnedPublished inInfoSec Write-upsMultiple CVEs affecting Pydio Cells 4.2.0Greetings hackers; just quickly wanted to share an advisory write-up that my team discovered in Pydio Cells 4.2.0. These have been…May 30, 2023May 30, 2023
PinnedPublished inSystem WeaknessI asked 10 Hackers Their Favourite Ways to Break into OrganizationsHello all, I come bearing gifts once more. To all cybersecurity professionals (especially those at Management and C-level) — I asked my…Nov 29, 20222Nov 29, 20222
PinnedThe 6 UGLY TRUTHS about Security CertificationsHere we are again, with yet another (possibly) controversial topic. This time is about security certifications. Regardless if you are in…May 6, 20228May 6, 20228
Tool Spotlight — Unveiling the Power of WebCopilot: An Automation Tool for Web App ReconAmidst this digital skirmish, reconnaissance plays a pivotal role, offering the initial glimpse into a target. WebCopilot, an ingenious…Mar 23Mar 23
Payload Storage in Malware Development: Code SectionIn the complex world of malware development, one crucial aspect that often stumps even seasoned cybersecurity professionals is the optimal…Jan 12Jan 12
Hunting 0days for a better worldHow finding CVE will protect your communities.Aug 13, 2023Aug 13, 2023
Published inSystem WeaknessBypassing image file upload restrictions [SUPER EASY]Hi people, it’s me and I’m back with more stuff that I learned in a recent engagement. I was tasked with testing a client’s web application…May 1, 20231May 1, 20231
Published inSystem WeaknessCyrillic character for phishing domainsHi everyone, it has been awhile since my last post. I’m here to bring you something that you may have heard (or not) in the past —…Apr 11, 2023Apr 11, 2023
City of Oakland data is leaked! PLAY RansomwareYour daily FLASH NEWS on Cyber Security:Mar 9, 2023Mar 9, 2023