Archives

2022

• 16 Aug Chipmonk with NUT (Network UPS Tools) used to event script power outages
• 30 Jul Authentication Bypass Techniques using SQLi, PHP, XPath, and LDAP injection
• 25 May Fuzz testing program file descriptors with deliverance
• 04 Apr A quick walkthrough of how to crack hashed passwords with John the Ripper
• 26 Mar Password cracking wordlists reprise
• 05 Mar Site wide release of my semi-private exploit archive
• 08 Feb CVE-2019-15947 Bitcoin Core bitcoin-qt crash dumps contain wallets
• 18 Jan Fuzzing network services with Fuzzotron and Radamsa modified pcap testcases
• 11 Jan Crash course in Elasticsearch Elastic Agent and Kibana log aggregation
• 04 Jan I Hacked a Bank and Got Arrested in 2012

2021

• 30 Dec An Intermediate Iptables Configuration Walkthrough
• 08 Dec A simple x86_64 stack based buffer overflow exploitation with gdb
• 17 Nov A bash wildcard expansion to arbitrary command line arguments (globbing abuse) whitepaper
• 14 Sep A case study whitepaper of the shadow-utils chfn, chsh, and userdel bug
• 16 Jun Secured encrypted networks with OpenVPN and Suricata
• 05 Jun The time I enumerated every GitHub admin
• 06 May A skidalicious cheat sheet of web app exploitation techniques
• 15 Apr Advanced Fuzzing Techniques in ansvif
• 30 Mar Creating a secured terminal paste tool
• 24 Mar From dirty Tor exit nodes to Bitcoin wallet.dat theft
• 22 Mar CVE-2017-5816 HP iMC PLAT RCE Whitepaper
• 18 Mar CVE-2006-3392 Webmin <1.29 pivot RCE Whitepaper