Exploit Arbitrary Deserialization through Blind SQL Injection
Learn how to exploit Arbitrary Deserialization through Blind SQL Injection vulnerabilities! X-MAS CTF 2022 "Elf Resources" wirteup is now available!
0xbro
0xbro, from developer to pentester (Beyond technology, Ep. 01)
This ia a video in which I had a nice conversation with Leonardo Tamiano about our school and work career, various IT security issues and many other topics.
Intercept HTTPS on non-rooted Android devices
Learn how to intercept HTTPS on non-rooted Android devices in this Android HackTheBox challange called Anchored.
HackTheBox - Timelapse
HackTheBox "Timelapse" wirteup is now available!
HackTheBox - Late
HackTheBox "Late" wirteup is now available!
Taking effective notes for CTF, OSCP and other labs
Having excellent and well-organized notes is a lifesaver during the @Offensive Security's OSCP preparation and exam, but also during CTFs, allowing you to identify vulnerabilities already exploited in the past and also to map how machines are interconnected with each other within the network. In this video, I will show you how I take practical notes using Obsidian and Notion and how I organize them.
HackTheBox - RouterSpace
HackTheBox "RouterSpace" wirteup is now available!
HackTheBox - Paper
HackTheBox "Paper" wirteup is now available!
Exploit Zip Slip vulnerability in python tarfile
Learn how to exploit Zip Slip vulnerability in python tarfile! HackTheBox "slippy" wirteup is now available!
Bypass certificate pinning with Frida and Xposed
Learn how to bypass certificate pinning with Frida and Xposed in this Android HackTheBox challange called Pinned.