#attack

6d ago · 32 min read · On May 18, 2026, at exactly 12:30 p.m. UTC, a software update silently arrived on the machines of thousands of developers worldwide. It looked legitimate, a routine patch to a tool used by over 2.2 mi

Join discussion

MAMubarak Alhazanpoly4.hashnode.dev

1

Why Rate Limiting Alone Won't Stop OTP Abuse — A Real Incident Breakdown

May 29 · 11 min read · The Attack That Looked Like Normal Traffic On a perfectly normal Tuesday morning, while the team was getting into their usual flow, we quietly noticed that our SendGrid email delivery was behaving str

BApalowo commented

EEEmma Engströmpentesting-dvwa.hashnode.dev

0

Cryptography Problems in DVWA

May 6 · 20 min read · Introduction Cryptography is used everywhere in modern applications to protect sensitive data such as passwords, session tokens, and personal information. Strong cryptographic algorithms are essential

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

File Inclusion in DVWA

May 5 · 22 min read · 1 Introduction In this post, the File Inclusion vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for local file inclusion (LFI) attacks on all levels is to read

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

Blind SQL Injection in DVWA

Apr 26 · 28 min read · 1 Introduction In this post, the Blind SQL Injection vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to find the version of the SQL

Join discussion

NNodeOpsnodeops.hashnode.dev

0

The Vercel breach is not a Vercel problem

Apr 20 · 13 min read · The first major AI-supply-chain attack of the agentic era happened this weekend, and if your team uses any third-party AI tool connected to Google Workspace, GitHub, or Slack, you should assume you ar

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

Insecure CAPTCHA in DVWA

Apr 18 · 27 min read · 1 Introduction In this post, the Insecure CAPTCHA vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to bypass the poor CAPTCHA system

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

Weak Session IDs in DVWA

Apr 12 · 16 min read · 1 Introduction In this post, the Weak Session IDs vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to work out how the ID is generat

Join discussion

EEEmma Engströmpentesting-dvwa.hashnode.dev

0

DOM-Based XSS in DVWA

Mar 29 · 14 min read · Introduction This post examines a DOM-based cross-site scripting (XSS) vulnerability in the Damn Vulnerable Web Application (DVWA) and demonstrates how it can be exploited to achieve client-side code

Join discussion

WBWiktoria Blomgren Strandbergpentesting-dvwa.hashnode.dev

0

JavaScript Attacks in DVWA

Mar 26 · 21 min read · 1 Introduction In this post, the JavaScript Attacks vulnerability in the Damn Vulnerable Web Application (DVWA) is described. The objective for attacks on all levels is to analyse and manipulate the J

Join discussion

Tag feed

Tag feed

#attack

Trending tags this week

Inside the 18-Minute Hack That Breached GitHub's Internal Vault