Martino Tommasini
InfoSec student | CTF player | Aspiring Penetration Tester
HOME
CATEGORIES
TAGS
ARCHIVES
ABOUT
Home
Archives
Archives
Cancel
Archives
2021
19
Sep
Hack The Box - Schooled writeup
30
Aug
Hack The Box - Knife writeup
17
Aug
Hack The Box - Love writeup
03
Aug
Hack The Box - Armageddon writeup
03
Aug
Hack The Box - TheNotebook writeup
16
Jul
Hacker101 - Micro-CMS-v2
16
Jul
Hacker101 - Micro-CMS v1 writeup
14
Jul
PortSwigger Labs - Business logic - Missing validation of negative quantities
14
Jul
PortSwigger Labs - Business Logic - Excessive trust in client side controls
13
Jul
PortSwigger Labs - XXE to SSRF to exfiltrate EC2 instance metadata
13
Jul
PortSwigger Labs - Simple XXE to retrieve sensible files
13
Jul
PortSwigger Labs - CSRF with no defenses
04
Jul
PortSwigger Labs - Stored XSS to CSRF to change users email
28
Jun
PortSwigger Labs - Stored DOM XSS
27
Jun
PortSwigger Labs - Reflected XSS with some SVG markup allowed
26
Jun
Hack The Box - Spectra Writeup
23
Jun
PortSwigger Labs - Reflected XSS with event handlers and href attributes blocked
23
Jun
PortSwigger Labs - Reflected XSS into HTML context with all tags blocked except custom ones
09
Jun
Hack The Box - Delivery Writeup
06
Jun
Hack The Box - ScriptKiddie Writeup
Recent Update
Hack The Box - Schooled writeup
Hack The Box - TheNotebook writeup
Hack The Box - Armageddon writeup
Hack The Box - Love writeup
Hack The Box - ScriptKiddie Writeup
Trending Tags
known-exploit
xss
mysql
reflected-xss
stored-xss
broken-access-control
business-logic
csrf
hashcat
metasploit
Trending Tags
known exploit
xss
mysql
reflected xss
stored xss
broken access control
business logic
csrf
hashcat
metasploit