Learning Series: IDOR Vulnerability explained
In this post, I would like to share some information on the Insecure Direct Object Reference (IDOR) vulnerability. What is IDOR Vulnerability? For those who are not familiar with IDOR…
Learning Series: Server-Side Template Injection (SSTI)
What is Server-Side Template Injection? An attack that allows the attacker to use the native template syntax to inject a few malicious payloads into the template is been called Server-side…
TryHackMe: Inclusion – A beginner level LFI challenge
In this post, I would like to share some challenges on a basic level of Local File Inclusion(LFI) attack on the TryHackMe. For those are not familiar with LFI attack,…
Lateral Movement attack Review
What is Lateral Movement attack? For those are not familiar with Lateral Movement attack, it normally an attack that related to cyberattack techniques that used whenever they successfully gain initial…