I was tasked to find vulnerabilities within a Java web application. I found XSS, SQLi, CSRF, as well as access control vulnerabilities.
I provide some suggestions as well as a potential detection mechanism.
With some good teamwork, our team WeWantPizza won a CTF held by the university security society. I decided to use my winning prize as a network-wide ad-blocker.
During my undergraduate degree, I discovered the thought of the insider threat. Insider threat is a broad term and includes insiders which act in malicious…
I love virtualization! It really makes learning enjoyable! Some consider virtualization not to be “cool” as I’m not physically handling the hardware, but the pros…
This blog entry documents my OSCP experience, the methodology I took for the exam, and provides some tips retrospective tips!