Cancel

Csv Injection

CSV Injection (Formula Injection) Many web applications allow the user to download content such as templates for invoices or user settings to a CSV file. Many users choose to open the CSV file in ...

Mar 17, 2021 2021-03-17T00:00:00+07:00 1 min reads

Account takeover

Account Takeover Summary Password Reset Feature Password Reset Token Leak Via Referrer Account Takeover Through Password Reset Poisoning Password Reset Via Email Paramet...

Feb 22, 2021 2021-02-22T00:00:00+07:00 5 min reads

Insecure Source Code Management

Insecure source code management Git Example Recovering file contents from .git/logs/HEAD Recovering file contents from .git/index T...

Feb 3, 2021 2021-02-03T00:00:00+07:00 5 min reads

Cobalt strike cheatsheet

Cobalt Strike Cobalt Strike is threat emulation software. Red teams and penetration testers use Cobalt Strike to demonstrate the risk of a breach and evaluate mature security programs. Cobalt S...

Jan 30, 2021 2021-01-30T00:00:00+07:00 12 min reads

Api Key Leaks

API Key Leaks The API key is a unique identifier that is used to authenticate requests associated with your project. Some developers might hardcode them or leave it on public shares. Summary ...

Jan 25, 2021 2021-01-25T00:00:00+07:00 3 min reads

1
...
5
6
7
...
15
6 / 15

Csv Injection

Account takeover

Insecure Source Code Management

Cobalt strike cheatsheet

Api Key Leaks

Trending Tags