PinnedCloud Pentesting: Azure (Common test cases in an Azure pentest engagement )I always try to follow a general methodology when doing Azure Cloud pentest, or any type of pentest for that matter.Oct 19Oct 19
Intro to Attack Surface Management (ASM)Its been a while since I’ve handled an ASM tool and since I still have access to a trial account of an ASM tool, why not write a blog about…Apr 10Apr 10
AI/LLM-integrated Apps Penetration TestingThis is a beginner’s attempt to create a comprehensive collection of methodologies, learning materials, and other resources that are…Feb 11Feb 11
CVE-2023–38960: Insecure Permission vulnerability in RaidenFTPD v2.4 build 4005 (2016/04/01)Vendor Affected:Feb 10Feb 10
CVE-2023–37611: Stored XSS In Neos CMS 8.3.3I found a Stored XSS using SVG file in /neos/management/media of NeosCMS 8.3.3. CVE-2023–37611 has been issued my MITRE for this…Aug 21, 2023Aug 21, 2023
CVE-2023–33534: Account takeover through CSRF vulnerabilityI found a CSRF vulnerability on a Wireless Router | ZLTS10G with a software version S10G_3.11.6. This hardware is manufactured by SZTONED /…Jul 27, 2023Jul 27, 2023