© 2026 Hashnode
I. Giới thiệu về DICOM DICOM (Digital Imaging and Communications in Medicine) là một chuẩn quốc tế được sử dụng rộng rãi trong ngành y tế để lưu trữ, truyền tải và xử lý hình ảnh y khoa như X-Quang, MRI, CT scan, siêu âm,… Chuẩn này còn định nghĩa gi...

Scenario You are performing a web application penetration test for a software development company, and they task you with testing the latest build of their social networking web application. Try to utilize the various techniques you learned in this m...

In this article, we’ll cover the XXE - SOC-mas XX-what-ee? write-up as the Day 5 challenge of the Advent of Cyber event challenge. It was interesting to navigate Web Security for an e-commerce gifting site using PortSwigger’s XML external entity (XXE...

Before proceeding I would like to give a shoutout to my awesome friend and colleagueMohit Kwho tagged along in this journey and played a pivotal role. Summary This blog is a result of the applied vulnerability research that we did against open-webui...

Lab Scenario: Our mission is to exploit XXE through a web application's "Check stock" feature, specifically using external entities to retrieve files. By intercepting and manipulating a POST request, we intend to use XXE to trigger the retrieval of s...
