HTTP Request Smuggling Attack VectorsÂ
Keeping up with new vulnerabilities and attack vectors is essential in the always changing world of web application security. Recent years have seen an increase …
Web Services and its Attack TypesÂ
Web services attacks are a type of cyber-attack that target web-based applications and services. These attacks are designed to exploit vulnerabilities in web services, which …
HTTP Request Smuggling Basics Â
The HTTP Request Smuggling vulnerability, also known as the HTTP Desync Attack, has been around for a while but was brought back to attention by …
An Introduction to Smali
Smali is a type of assembly language for the Dalvik virtual machine, which is used by Android devices. It is used to modify and reverse …
Authentication Testing of Smart Contracts Using FoundryÂ
Smart contracts are self-executing contracts with the terms of the agreement between buyer and seller being directly written into lines of code. They are immutable …
HackTheBox: Object WriteupÂ
Machine Name: Object Difficulty: Hard OS: Windows Rating: 5.0/5.0 Summary Object is a hard windows machine (Retired) in hackthebox. Its gives us a hands-on experience …
Flash Loan Attack on Smart ContractsÂ
Flash loans are a relatively new financial instrument that are enabled by smart contracts on blockchain networks such as Ethereum. A flash loan is an …
How to Prevent Hacking Out of KIOSK
KIOSK machines are self-service endpoints that allow users to complete tasks on their own, at their preferred pace and time. These machines bring a restricted …
Bypassing Firewalls: Going Beyond Source Port ManipulationÂ
As penetration testers/security researchers, we often encounter firewalls configured with rules that make it difficult to discover and test open ports. In this blog, we …
