TryHackMe: Basic Pentesting
On this post, I would like to share the trick to tackle Basic Pentesting. The objective of this machine would…
TryHackMe: Inclusion – A beginner level LFI challenge
In this post, I would like to share some challenges on a basic level of Local File Inclusion(LFI) attack on…
TryHackMe: Advent of Cyber 2 – Day 1
In this post, I would like to share some technical areas that I have to try on TryHackMe website. I’m…
New PCI-DSS standards will be coming soon
We can expect a new PCI-DSS standards version 4.0 will be released by end of this year or mid-2021. For…
Database Penetration Testing
In this post, I would like to share knowledge and experience while doing Database Penetration Testing. The purpose of Penetration…
DNS-over-HTTPS review
DNS is also known as Domain Name Server is a network protocol that been used by people around the world…
Smuggling attack on HTTP request
This smuggling attack on HTTP requests would sound pretty new for some of the people out there which I will…
ATM Assessment
I’m sure that most of the people know what Automated Teller Machine (ATM) is and what is used in our…
Vulnerabilities Assessment vs Penetration Testing
In this post, I would like to share the difference between Vulnerabilities Assessment vs Penetration Testing during real-life security testing.…
PhoneSploit Android Mobile Debug Tool
PhoneSploit is a new tool that would be exploiting Android Mobile Devices by using Android Debug Bridge (ADB). The tools…