
Tags
Age Of Empires II AI Algokit Algorand Angular Blockchain Blog Bluesky Bot Bug Bounty BURP CC Certification Challenge cryptocurrencies CSS ctf Cybersecurity Data Django Docker Ebooks HackTheBox Homebrew HTML Hugo ISC2 Modding Playstation portswigger PostgreSQL Project Ps2 Purevolume Python R scripts SOC Telegram TryHackMe Walkthrough Website Windows
Uncovering a Race Condition in the Transfer of Memberships.
07/07/2026
From payment processing to membership transfers: How I uncovered another systemic concurrency issue.
395 words
|
2 minutes
Uncovering a Race Condition in Payment Processing
28/06/2026
How I earned $2,000 discovering a time-of-check to time-of-use vulnerability
493 words
|
2 minutes
Skills Assessment - Cross-Site Scripting - HackTheBox.
16/11/2025
We are performing a Web Application Penetration Testing task for a company that hired you, which just released their new Security Blog. In our Web Application Penetration Testing plan, we reached the part where you must test the web application against Cross-Site Scripting vulnerabilities (XSS).
241 words
|
1 minutes
Skills Assessment - JavaScript Deobfuscation - HackTheBox.
23/10/2025
During our Penetration Test, we came across a web server that contains JavaScript and APIs. We need to determine their functionality to understand how it can negatively affect our customer.
292 words
|
1 minutes
Skills Assessment - Web Fuzzing - HackTheBox.
10/10/2025
To complete this Skills Assessment, you will need to apply the multitude of tools and techniques showcased throughout this module. All fuzzing can be completed using the common.txtAfter completing all steps in the assessment, you will be presented with a page that contains a flag in the format of HTB{…}. What is that flag?
215 words
|
1 minutes
Skills Assessment - Information Gathering - HackTheBox.
09/09/2025
To complete the skills assessment, answer the questions below. You will need to apply a variety of skills learned in this module, including:
294 words
|
1 minutes
PortSwigger Academy - More Broken Access Control Labs.
28/07/2025
When trying to access the Admin panel via the front end system, we get “access denied”. When intercepting the request it looks like:
316 words
|
2 minutes
PortSwigger Academy - Path traversal.
09/07/2025
This learning path covers path traversal vulnerabilities. You’ll learn how to carry out path traversal attacks and circumvent common obstacles. You’ll also learn how to prevent path traversal attacks.
1230 words
|
6 minutes
