A few weeks ago, OWASP TOP 10 2021 was released. Unfortunately, it becomes more and more useful for developers and less useful for hackers. You won't find there many concrete vulnerability classes. Instead, there are generic... hmm bugs? I'm not sure bugs is the...
Hacking Techniques
Get CVEs by hacking WordPress plugins
Wpscan.com are the creators of the tool with the same name. It's definitely something you used if you have ever approached a WordPress target. They created an ebook about looking for vulnerabilities in WP plugins. It's for you if you prefer white-box testing...
A ridiculous way to bypass AWS WAF
WAFs are often bypassable and mustn't be relied on as the only line of defence. With that said, they tend to be annoying and sometimes even make attacks impossible. The AWS WAF has an interesting feature. It only inspects the first 8 KB of the POST body. By default,...
Bypassing verification with arrays
EnesSaltk7 shared on Twitter that he has been able to brute-force OTP codes using a JSON array. Instead of sending one parameter, you send the array with many values and only need one of them to be valid. It's a nice one. A bit similar to what we've talked about in...
Prototype pollution
If you have ever run npm audit command, you probably saw hundreds of alerts about prototype pollution. The majority of them are false positives - unexploitable in real life. However, this vulnerability is definitely not just a noise, especially in Node.js...
Cryptography bugs explained without complex maths
For a long time, I knew absolutely nothing about cryptography. At the beginning of my pentesting job, if I saw encrypted data, the only bug that I could think of is leaking the key. If I couldn’t then I’d just assume it’s secure. One of the reasons was whenever I...
10 address bypass tricks
Address validations are everywhere in web security. Improper implementations can lead to SSRFs, RCEs, postMessage bugs or CORS misconfigurations to name a few. Luckily for us, it’s extremely complex and developers often make mistakes here. Here are 10 tricks you can...
Hacking GitHub actions
I don’t have a crystal ball but if I were to predict what we will be hacking in the future, I’d say we will be hacking more and more stuff around the web applications. That’s a trend that’s already present. Examples of such attacks are: cache poisoning or request...