Tag feed

#webpentesting

19 posts6 followers

Explore Hashnode

Alternatives

TLTirthak Likhartirthaklikhar.hashnode.devMay 7 · 11 min read

TryHackMe SEC1 Certification: A Honest, Detailed Review

SEC1 is one of the few beginner certifications that actually puts you inside a real environment and asks you to work. This is a first-hand account of what the exam looks like, where it tests you hard,

0

SSl4cK0THz2r.zor0ark.meMay 6 · 7 min read

TryHackMe — Recruit Walkthrough

Challenge Link: https://tryhackme.com/room/recruitwebchallenge Introduction The "Recruit" challenge on TryHackMe is a fantastic playground for demonstrating how low-severity vulnerabilities can be ch

0

SSl4cK0THz2r.zor0ark.meMay 5 · 6 min read

WebVersePro Labs - Labs: NewsForge Writeup (Command Injection)

Challenge Link: https://dashboard.webverselabs-pro.com/labs/newsforge Introduction Welcome back to another CTF writeup, we are tackling NewsForge, an easy-level web challenge from the WebVersePro Lab

0

ZHzahi halimizahihalimi.hashnode.devDec 31, 2025 · 3 min read

How I Accidentally Discovered an Undocumented Behavior in “Web for Pentester 1”

Most security labs are built around predictable, well-documented vulnerabilities. But every once in a while, during experimentation, you try something that should not work, yet it works perfectly. This is the story of how a simple challenge in Web fo...

0

VVishantvulnvault.hashnode.devDec 24, 2025 · 2 min read

Finding Cross-Site Scripting (XSS) Using a Practical Testing Methodology

NOTE: This post is for educational purposes only. Please use the information responsibly and legally. While solving an XSS lab, I followed a simple and repeatable methodology that helped me identify how user input was being handled and where script ...

0

VVishantvulnvault.hashnode.devDec 21, 2025 · 2 min read

Finding a File Upload Misconfiguration using Burp Suite

NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Improper File Upload Validation / Security Misconfiguration) While testing example.com using Burp Suite, I found a common but often overlooked sec...

0

VVishantvulnvault.hashnode.devDec 20, 2025 · 2 min read

Finding a Missing HSTS Security Header using Burp Suite

NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Missing Security Header – HSTS) While testing a website using Burp Suite, I found a common but often ignored security issue:HTTP Strict Transport ...

0

VVishantvulnvault.hashnode.devDec 18, 2025 · 2 min read

Finding a Rate Limiting Vulnerability using Burp Suite

NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Missing Rate Limiting Protection)While testing a website using Burp Suite, I found a common but serious security issue:No rate limiting was impleme...

0

VVishantvulnvault.hashnode.devDec 17, 2025 · 2 min read

Finding a Cookie Security Misconfiguration using Burp Suite

NOTE: This post is for educational purposes only. Please use the information responsibly and legally. (Missing Secure Flag) While testing a website with Burp Suite, I found a simple but important security issue:Sensitive cookies were missing the Sec...

0

VGVishant Gcybersechub.comOct 2, 2025 · 1 min read

WEB PENTESTING :-“Understanding the HTTP Response Packets .”

NOTE: This post is for educational purposes only. Please use the information responsibly and legally. The following you see is the HTTP Response header. HTTP/1.1 200 OK Date: Thu, 02 Oct 2025 18:30:00 GMT Server: nginx/1.24.0 Content-Type: text...

0

#webpentesting

Search Hashnode

#webpentesting

Explore Hashnode

TryHackMe SEC1 Certification: A Honest, Detailed Review

TryHackMe — Recruit Walkthrough

WebVersePro Labs - Labs: NewsForge Writeup (Command Injection)

How I Accidentally Discovered an Undocumented Behavior in “Web for Pentester 1”

Finding Cross-Site Scripting (XSS) Using a Practical Testing Methodology

Finding a File Upload Misconfiguration using Burp Suite

Finding a Missing HSTS Security Header using Burp Suite

Finding a Rate Limiting Vulnerability using Burp Suite

Finding a Cookie Security Misconfiguration using Burp Suite

WEB PENTESTING :-“Understanding the HTTP Response Packets .”

Trending tags this week