AWS (1) CSRF (1) CVE (1) apollo (1) appsec (3) caching (1) challenges (8) cloud (1) ctf (8) graphql (1) hacking (11) infra (1) methodology (1) misconfiguration (1) offsec (1) penetration tests (1) pentest (1) research (1) security (1)

 AWS (1)

Security Implication of Root principal in AWS

 CSRF (1)

CVE-2021-29995 CSRF to RCE on CloverDX 5.9.0

 CVE (1)

CVE-2021-29995 CSRF to RCE on CloverDX 5.9.0

 apollo (1)

Apollo Caching 1on1

 appsec (3)

CVE-2021-29995 CSRF to RCE on CloverDX 5.9.0
Apollo Caching 1on1
AWAE and OSWE review

 caching (1)

Apollo Caching 1on1

 challenges (8)

Exploiting Jinja SSTI with limited payload size.
Gynvael's web security challenge - part 6.
Gynvael's web security challenge - part 5.
Gynvael's web security challenge - part 4.
Gynvael's web security challenge - part 3.
Gynvael's web security challenge - part 2.
Gynvael's web security challenge - part 1.
Gynvael's web security challenge - part 0.

 cloud (1)

Security Implication of Root principal in AWS

 ctf (8)

Exploiting Jinja SSTI with limited payload size.
Gynvael's web security challenge - part 6.
Gynvael's web security challenge - part 5.
Gynvael's web security challenge - part 4.
Gynvael's web security challenge - part 3.
Gynvael's web security challenge - part 2.
Gynvael's web security challenge - part 1.
Gynvael's web security challenge - part 0.

 graphql (1)

Apollo Caching 1on1

 hacking (11)

Security Implication of Root principal in AWS
CVE-2021-29995 CSRF to RCE on CloverDX 5.9.0
AWAE and OSWE review
Exploiting Jinja SSTI with limited payload size.
Gynvael's web security challenge - part 6.
Gynvael's web security challenge - part 5.
Gynvael's web security challenge - part 4.
Gynvael's web security challenge - part 3.
Gynvael's web security challenge - part 2.
Gynvael's web security challenge - part 1.
Gynvael's web security challenge - part 0.

 infra (1)

Security Implication of Root principal in AWS

 methodology (1)

Pentest Methodology

 misconfiguration (1)

Apollo Caching 1on1

 offsec (1)

AWAE and OSWE review

 penetration tests (1)

Pentest Methodology

 pentest (1)

Pentest Methodology

 research (1)

Apollo Caching 1on1

 security (1)

Apollo Caching 1on1