Demystifying Web Pentesting: Part -6 Security HeadersSecurity headers are HTTP response headers that provide an additional layer of protection for web applications by instructing browsers on…Mar 16Mar 16
How to Add Burp Suite CA Certificate to a Rooted Android Device for Mobile Penetration TestingIn this article, we will explore how to add Burp Suite’s CA certificate to a rooted Android device for mobile penetration testing. Due to…Jan 5Jan 5
Demystifying Web Pentesting: Part -4 CORS ChecklistUnderstanding how CORS (Cross-Origin Resource Sharing) works is key to identifying potential vulnerabilities. When a website uses…Dec 9, 2024Dec 9, 2024
Demystifying Web Pentesting: Part -5 Understanding XML External Entity (XXE) VulnerabilitiesIn the ever-evolving landscape of cybersecurity, vulnerabilities often arise from the misconfiguration of technologies designed to handle…Dec 9, 2024Dec 9, 2024
The tale of SQL Injection and Improper Error handling: A Real world ExampleWhile conducting a penetration test on a web application, I identified a critical vulnerability tied to SQL Injection. However, the root…Dec 7, 2024Dec 7, 2024
Demystifying Web Pentesting: Part -3 In-Depth Explanation of HTTP Requests and ResponsesIn the modern web, HTTP requests and responses form the backbone of communication between a client (browser, application, or script) and a…Dec 5, 20241Dec 5, 20241
Demystifying Web Pentesting: Part -2 In-Depth Explanation of HTTP Requests and ResponsesIn the modern web, HTTP requests and responses form the backbone of communication between a client (browser, application, or script) and a…Dec 4, 2024Dec 4, 2024
Cracking Symmetric Encryption: How I Unveiled a Critical Flaw in Login SecurityHello Everyone,Dec 3, 2024Dec 3, 2024
Overview of Web Application Data FlowIn a typical web application, the data flows between the client (user’s browser) and the server in a series of steps. This flow ensures…Sep 24, 2024Sep 24, 2024
“Mastering Access Control Vulnerabilities: A Guide to Horizontal and Vertical Privilege Escalations…Description:Sep 22, 2024Sep 22, 2024
