@TripleN
Penetration Tester
Nothing here yet.
Nothing here yet.
Mar 25, 2024 · 10 min read · \x00 - TLDR; To solve this web challenge I chained the following vulnerabilities:1. Using SSRF with DNSReinding attack in order to extract info from internal API.2. Perform CSRF attack using secret token to register user to the application.3. Using ...
Join discussion
Dec 11, 2022 · 7 min read · \x00 - TLDR; In this article I will follow the steps required to analyze a cryptographic algorithm type, identify the algorithm, and perform known plaintext attack in order to expose the DES encryption keys. \x01 - Little Bit of Theory Stream Ciphe...
Join discussion
Dec 1, 2022 · 5 min read · \x00 - TLDR; DNS Rebinding is a great technique to level up blind SSRF attacks.In this article I go step by step on what is a DNS Rebinding Attack, how to configure your own server, exploit a demo app, and what to do in case the browser ignores the ...
Join discussion