Archives

2021

• 29 Jul CraftCMS Zero-day – SSTI + XSS triggering RCE
• 29 Jul CraftCMS Zero-day – SSTI + XSS triggering RCE (Proof of Concept)
• 09 Jun Dynamic importing stuff in Python
• 07 Apr Getting Started with Greybox Testing
• 07 Apr From Burnout to RCE: Getting out of the rat race

2020

• 27 Dec You don’t need xss.rocks/xss.js
• 27 Dec Internal IP Address leak in Misconfigured WordPress to bypass WAF
• 11 Jun Open Redirect in Flattr