Tag feed

#webpentesting

19 posts6 followers

Trending tags this week

TLTirthak Likhartirthaklikhar.hashnode.dev

TryHackMe SEC1 Certification: A Honest, Detailed Review

May 7 · 11 min read · SEC1 is one of the few beginner certifications that actually puts you inside a real environment and asks you to work. This is a first-hand account of what the exam looks like, where it tests you hard,

Join discussion

SSl4cK0THz2r.zor0ark.me

0

TryHackMe — Recruit Walkthrough

May 6 · 7 min read · Challenge Link: https://tryhackme.com/room/recruitwebchallenge Introduction The "Recruit" challenge on TryHackMe is a fantastic playground for demonstrating how low-severity vulnerabilities can be ch

Join discussion

SSl4cK0THz2r.zor0ark.me

0

WebVersePro Labs - Labs: NewsForge Writeup (Command Injection)

May 5 · 6 min read · Challenge Link: https://dashboard.webverselabs-pro.com/labs/newsforge Introduction Welcome back to another CTF writeup, we are tackling NewsForge, an easy-level web challenge from the WebVersePro Lab

Join discussion

ZHzahi halimizahihalimi.hashnode.dev

0

How I Accidentally Discovered an Undocumented Behavior in “Web for Pentester 1”

Dec 31, 2025 · 3 min read · Most security labs are built around predictable, well-documented vulnerabilities. But every once in a while, during experimentation, you try something that should not work, yet it works perfectly. This is the story of how a simple challenge in Web fo...

Join discussion

VVishantvulnvault.hashnode.dev

0

Finding Cross-Site Scripting (XSS) Using a Practical Testing Methodology

Dec 24, 2025 · 2 min read · NOTE: This post is for educational purposes only. Please use the information responsibly and legally. While solving an XSS lab, I followed a simple and repeatable methodology that helped me identify how user input was being handled and where script ...

Join discussion

VVishantvulnvault.hashnode.dev

0

Finding a File Upload Misconfiguration using Burp Suite

Dec 21, 2025 · 2 min read · NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Improper File Upload Validation / Security Misconfiguration) While testing example.com using Burp Suite, I found a common but often overlooked sec...

Join discussion

VVishantvulnvault.hashnode.dev

0

Finding a Missing HSTS Security Header using Burp Suite

Dec 20, 2025 · 2 min read · NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Missing Security Header – HSTS) While testing a website using Burp Suite, I found a common but often ignored security issue:HTTP Strict Transport ...

Join discussion

VVishantvulnvault.hashnode.dev

0

Finding a Rate Limiting Vulnerability using Burp Suite

Dec 18, 2025 · 2 min read · NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Missing Rate Limiting Protection)While testing a website using Burp Suite, I found a common but serious security issue:No rate limiting was impleme...

Join discussion

VVishantvulnvault.hashnode.dev

0

Finding a Cookie Security Misconfiguration using Burp Suite

Dec 17, 2025 · 2 min read · NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Missing Secure Flag) While testing a website with Burp Suite, I found a simple but important security issue:Sensitive cookies were missing the Sec...

Join discussion

VGVishant Gcybersechub.com

0

WEB PENTESTING :-“Understanding the HTTP Response Packets .”

Oct 2, 2025 · 1 min read · NOTE: This post is for educational purposes only. Please use the information responsibly and legally. The following you see is the HTTP Response header. HTTP/1.1 200 OK Date: Thu, 02 Oct 2025 18:30:00 GMT Server: nginx/1.24.0 Content-Type: text...

Join discussion

#webpentesting

Search Hashnode

#webpentesting

Trending tags this week

TryHackMe SEC1 Certification: A Honest, Detailed Review

TryHackMe — Recruit Walkthrough

WebVersePro Labs - Labs: NewsForge Writeup (Command Injection)

How I Accidentally Discovered an Undocumented Behavior in “Web for Pentester 1”

Finding Cross-Site Scripting (XSS) Using a Practical Testing Methodology

Finding a File Upload Misconfiguration using Burp Suite

Finding a Missing HSTS Security Header using Burp Suite

Finding a Rate Limiting Vulnerability using Burp Suite

Finding a Cookie Security Misconfiguration using Burp Suite

WEB PENTESTING :-“Understanding the HTTP Response Packets .”