Blog

In this article, we will explore DLL Hijacking, and how attackers use it for privilege escalation in...

In this article, we will try to learn what malware is and how malware analysis works. It is aimed at...

Netcat (nc, ncat, or the swiss army knife of networking, as some might prefer to call it) ...

Server-Side Request Forgery (or SSRF) is an attack that consists of inducing a web applica...

Host Header injection is not the type of attack that you would normally find in CTFs or security cha...

HTTP Request Smuggling (HRS) is a type of attack that is gaining more and more attention in rec...

Out of the many attacks that threaten web applications today, XXE remains the one that is ...

Cross-Site Request Forgery (CSRF or XSRF), also called Client-Side Request Forgery, i...

This article presents a great introduction for anyone trying to learn about Cross-Site Scripting (or...

THC Hydra is a powerful tool to use against login forms. It can perform brute force and diction...

Once you’ve gained access to a Linux system, the next logical step is to perform&nbs...

Every self-respecting pentester should have a powerful password cracker in their toolkit, and John t...

Directories and Files enumeration is one of the first steps that an attacker performs during web app...

SQL injection is often referenced as the most common type of attack on websites. It is being used ex...

Nmap is an open-source network mapping tool developed by Gordon Lyon. It is widely used as a po...

If you’ve spent enough time on the web searching for practical resources to learn how to hack,...

Whenever you want to look for something on the Internet, you use Google. The giant search engine ind...