Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by below. Parameter Filename - email   ...

Host Enumeration Let us begin with an nmap scan to identify listening services. We get a result of three listening ports, interestingly three of which are HTTP services. 22: OpenSSH 7.6p1 ...

An issue was discovered in Project Worlds Official Car Rental System - 1. It allows the admin user to run commands on the server with their account because the upload section on the file-manager pa...

Host Enumeration As usual, we begin with an nmap scan to view open ports on the host. In my limited experience, Windows hosts have many open ports. It seems that this remains true with Forest....

Daily Expense Tracker System (DETS) is vulnerable to stored cross site scripting (XSS). This post will be a brief write up about discovery and exploitation of CVE-2020-10107. This vulnerability exi...

Daily Expense Tracker System (DETS) is vulnerable to SQL injection. This post will be a brief write up about discovery and exploitation of CVE-2020-10106. These vulnerabilities exist in the Daily E...

This is a quick post on how to configure GitHub SSH keys. The GitHub documentation is pretty good with this, so this post is more of a personal note. The advantage of using GitHub SSH keys is that...

I would like to preface this post by saying that the privilege escalation is through an unintended method. Host Enumeration As usual, we begin with a full port scan in order to discover o...

Hello World - Heading 1 Hello World - Text

Enumeration Initially, we must discover what IP the target received from the DHCP server. We can use netdiscover to identify the IP address. From there, we perform a full port scan to identify ava...