d0bby

POSTS

• Jason Haddix' XSS Mindmap

  by d0bby on 5/4/2019, 10:15 AM with 0 comments

• OS Command Injection [video]

  by d0bby on 5/3/2019, 1:57 PM with 0 comments

• The Intigriti XSS challenge is over, but still up. Give it a try

  by d0bby on 5/3/2019, 1:48 PM with 0 comments

• Escaping Alcatraz: Breaking Out of [ ] Sandboxed Environments – Kirk Hayes

  by d0bby on 4/24/2019, 8:30 PM with 0 comments

• Fingerprinting Organizations with Collected Archives

  by d0bby on 4/24/2019, 8:17 PM with 0 comments

• Why my job is so easy and how you can make it harder – Pen Test War Stories

  by d0bby on 4/23/2019, 5:46 PM with 0 comments

• Web Cache Deception Attack – Omer Gil

  by d0bby on 4/22/2019, 10:52 AM with 0 comments

• Don't Talk to the Police – James Duane

  by d0bby on 4/22/2019, 9:07 AM with 4 comments

• Exploiting CORS Misconfigurations for BTC and Bounties – James Kettle

  by d0bby on 4/21/2019, 7:45 PM with 0 comments

• 0d0a CRLF Injection and More SSRF Magic

  by d0bby on 4/21/2019, 5:06 PM with 0 comments

• RCE in EA's Origin Desktop Client

  by d0bby on 4/19/2019, 6:59 PM with 0 comments

• Attacking Modern Web Technologies – Frans Rosen

  by d0bby on 4/19/2019, 2:25 PM with 0 comments

• @albinowax: CTF Writeup [H1-212]

  by d0bby on 4/13/2019, 9:36 AM with 0 comments

• Illustration: How a Bug Bounty Works

  by d0bby on 4/13/2019, 7:52 AM with 0 comments

• Password Reset and Web-Cache Poisoning (and a Little Surprise in RFC-2616)

  by d0bby on 4/9/2019, 5:55 PM with 1 comments

• How many hours do you reCAPTCHA per week?

  by d0bby on 4/1/2019, 8:56 PM with 8 comments

• by d0bby on 3/31/2019, 12:38 PM with comments

• Exact String Pattern Recognition [pdf]

  by d0bby on 3/31/2019, 12:36 PM with 0 comments

• Ghidra API Docs

  by d0bby on 3/8/2019, 2:04 PM with 0 comments

• by d0bby on 3/6/2019, 6:06 PM with comments

• by d0bby on 3/5/2019, 7:05 PM with comments

• Show HN: GTFOBins – Lolbas for Unix

  by d0bby on 2/24/2019, 3:17 PM with 0 comments