Exploiting Cache: 20 Headers That Makes your Web App vulnerable to Cache Poisoning

In the fast-moving world of web applications, caching plays a pivotal role in ensuring quick and efficient content delivery. However, as with most technologies, it comes with its own set of vulnerabilities. One of the most insidious threats in this realm is cache poisoning. This subtle yet powerful attack can manipulate what users see, disrupt functionality, and lead to severe security and…

0 Comments

September 18, 2024

linux / Web application

How to configure SSL on EC2 instance for free

The post is a walkthrough on how to configure ssl on linux instances. This can also be helpful when exploiting CORS.

0 Comments

December 7, 2021

OWASP top 10 / Uncategorized / Web application

How I found an IDOR in deletion of comparison lists

Read about an interesting scenario of IDOR that allowed to me view private user information and also delete publicly available list.

1 Comment

September 26, 2021

Information Security / OWASP top 10 / Web application

Here is how to hunt for OAUTH vulnerabilities

The post disccuss around the basics of OAUTH and how to hunt for OAUTH vulnerabilities like leaking tokens, abusing redirect URI, absense of state parameter.

0 Comments

July 7, 2021

Code Vigilant / OWASP top 10 / php / Source Code Review / Web application / XSS

Dont just sanitize but also escape – A fable of sanitize_text_field

The post talks about an interesting find of XSS even when the filter was used. It also covers the mistakes that a developer makes while sanitizing input.

4 Comments

May 21, 2021

Information Security / OWASP top 10 / Web application

Blind XXE attacks – Out of band interaction Techniques (OAST) to exfilterate data

The post covers various techniques by which sensitive data can be exfilterated using out of band interaction in XXE

1 Comment

April 24, 2021

Information Security / OWASP top 10 / Web application

XXE Simplified: The concept, Attacks and Mitigations

XXE remains amongst the one with a critical score on the severity perspective. Why? Being able to read server's sensitive files is where the victim can be fully compromised.

0 Comments

April 14, 2021

HackTheBox / Information Security / linux / python

Doctor hackthebox walkthrough

Doctor is an easy linux machine from hackthebox. The initial foothold exploits SSTI/XSS and with splunkd you get the privilege escalation

0 Comments

January 12, 2021

Information Security / Web application

The ultimate guide to HTTP request & response headers

End-users constantly make GET or POST request to the internet to retrieve information. The most common protocol used here is HTTP/S. But this communication is not just about making requests. It needs to be meaningful when sent from client to server or vice-versa. Here’s when HTTP header comes in. With headers, client/server can send additional information with HTTP request. In this blog…

0 Comments

September 10, 2020

Django / python / Web application

How to deploy a Django Web Application for free on pythonanywhere

Deploy django web applications for free on pythonanywhere. Also solve the hassle of storing static files.

0 Comments

August 21, 2020