Varkey Thomasskinnyidiot.hashnode.dev·Jul 16, 2024Horizontal to Vertical Privilege EscalationIntro: This type of escalation is a combination of both horizontal, and vertical privilege escalation. First, an attacker gains access to an standard account without any administrative privileges. After accessing the standard account, the attacker wi...Discussappsec
Rushikesh Patiloffensivebytes.com·May 5, 2024Exploiting Exposed Encryption Keys in Web ApplicationsIntroduction: During a recent penetration testing engagement, I identified a critical security issue: exposed encryption keys in a web application's client-side JavaScript. This vulnerability is particularly severe as it enables attackers to decrypt ...Discuss·45 readsoffensive-security
Rushikesh PatilforBreachForcebreachforce.net·May 3, 2024Exploiting Exposed Encryption Keys in Web ApplicationsIntroduction: During a recent penetration testing engagement, I identified a critical security issue: exposed encryption keys in a web application's client-side JavaScript. This vulnerability is particularly severe as it enables attackers to decrypt ...Discuss·10 likes·386 readsencryption