Pinned@ro0taddictCloud Pentesting: Azure (Common test cases in an Azure pentest engagement )I always try to follow a general methodology when doing Azure Cloud pentest, or any type of pentest for that matter.Oct 19Oct 19
@ro0taddictIntro to Attack Surface Management (ASM)Its been a while since I’ve handled an ASM tool and since I still have access to a trial account of an ASM tool, why not write a blog about…Apr 10Apr 10
@ro0taddictAI/LLM-integrated Apps Penetration TestingThis is a beginner’s attempt to create a comprehensive collection of methodologies, learning materials, and other resources that are…Feb 11Feb 11
@ro0taddictCVE-2023–38960: Insecure Permission vulnerability in RaidenFTPD v2.4 build 4005 (2016/04/01)Vendor Affected:Feb 10Feb 10
@ro0taddictCVE-2023–37611: Stored XSS In Neos CMS 8.3.3I found a Stored XSS using SVG file in /neos/management/media of NeosCMS 8.3.3. CVE-2023–37611 has been issued my MITRE for this…Aug 21, 2023Aug 21, 2023
@ro0taddictCVE-2023–33534: Account takeover through CSRF vulnerabilityI found a CSRF vulnerability on a Wireless Router | ZLTS10G with a software version S10G_3.11.6. This hardware is manufactured by SZTONED /…Jul 27, 2023Jul 27, 2023
@ro0taddictAnother OSCP-like Box: BashedThis is my fifth writeup for this series.Apr 2, 2021Apr 2, 2021
@ro0taddictAnother OSCP-like Box: LegacyThis is my fourth writeup for this series.Mar 1, 2021Mar 1, 2021