hacking 22

• Mura/Masa CMS - SQL Injection CVE-2024-32640 Nov 13, 2024
• iOS 16.7.8 Jailbreak on iPhone X Jul 25, 2024
• Hacking RAMADDA, White Box Web Apps, and Bug Bounty Tips Oct 20, 2023
• Department of Defense Researcher of the Month Aug 18, 2023
• SQL Injection in Eufy Security Application Feb 20, 2023
• Self-Hosted Security Part ? - Poor Rate Limiting in Organizr Jan 25, 2023
• Webmin CVE-2022-0824 RCE in Golang Oct 17, 2022
• Guitar Pro Directory Traversal and Filename XSS Oct 11, 2022
• CrushFTP DoS Sep 30, 2022
• Golang Proof of Concept Exploit for CVE-2021-44077: PreAuth RCE in ManageEngine ServiceDesk Plus < 11306 Sep 29, 2022
• The Incredibly Insecure Weather Station - Part 2 Aug 1, 2022
• The Incredibly Insecure Weather Station Jun 30, 2022
• Deploying and Configuring a Bug Bounty Box with Terraform and Ansible Apr 7, 2022
• MotionEye Config Info Disclosure Feb 17, 2022
• Offensive Security PEN-300 Evasion Techniques and Breaching Defenses - Course and Exam Review Feb 17, 2022
• Update: Hacking MotionEye - CVE-2021-44255 Jan 31, 2022
• Sharpshooter, Python2.7, and Pip2 Installation Dec 22, 2021
• Hacking MotionEye/MotionEyeOS Oct 9, 2021
• Evasion Techniques and Breaching Defenses (PEN-300) - OSEP - Initial Thoughts Aug 17, 2021
• Advanced Web Attacks and Exploits -AWAE - Exam Review Jul 21, 2021
• Malicious qBittorrent Search Plugin: Feature or Bug? Jun 20, 2021
• Offensive Security AWAE/OSWE Mar 25, 2021