4pfsec.comSSL Pinning bypass (Android Emulator)Over the weekend, I was taking a look at an application which implemented SSL pinning. Here's the technique I used to bypass pinning and view the raw requests sent to the application server which then helped me to uncover crucial details about the ap...Jan 14, 2024·2 min read
4pfsec.comOSEP - Advanced Evasion Techniques and Breaching Defenses - Review (2023)Introduction For the last three months, I've been working through the PEN300 course by OffSec which is all about advanced evasion and breaching defenses. Just got news from OffSec that I passed the 48-hour exam, and I wanted to share how I got the OS...Dec 23, 2023·7 min read
4pfsec.comTwingate: The Future of Remote AccessIntroduction Twingate is a cloud-based service that provides secured remote access to an organization’s networks. It’s function is very similar to a business VPN. Twingate makes Zero Trust Network Access (Yes, Buzzword. I know) easy to deploy, even e...Aug 28, 2023·7 min read
4pfsec.comCPTS - HTB Certified Penetration Testing Specialist - Review (2023)Introduction Having spent a considerable amount of time immersed in web-related attacks in the AWAE labs over the last 4 months, I began to feel a sense of detachment from the realm of Active Directory (AD) exploitation and pivoting. Now that I was d...Jun 14, 2023·9 min read
4pfsec.comOSWP - Foundational Wireless Network Attacks - Review (2023)Introduction Greetings, fellow cyber peoplez! Just wanted to give you guys some insight into my journey towards earning the Offensive Security Wireless Professional (OSWP) certification. In this blog post, I will take you through some of my experienc...May 21, 2023·4 min read
