Brandon RoldanAutomating CSRF Detection in WordPress Plugins with SemgrepIntroductionNov 1, 2023Nov 1, 2023
Brandon RoldanIDOR in support.mozilla.org through Code ReviewI was trying to improve my static analysis code, specifically django apps, so i decided to hack a random project in github. And i found…Mar 2, 2022Mar 2, 2022
Brandon RoldanBookwyrm Server Side Request ForgeryWhile reading the code of bookwyrm, i encounter this endpointFeb 14, 2022Feb 14, 2022
Brandon RoldanHacking into school management systems. Reflected XSS To RCEAs a hacker, we are asked a million times before if we can hack into their school system and change their grades.Feb 8, 20227Feb 8, 20227
Brandon RoldanHacking and reverse engineering il2cpp games with ghidraLast writeup, we talk about how to hack unity games compiled on mono. This time, we will be hacking unity games compiled in il2cpp. IL2CPP…Feb 7, 20223Feb 7, 20223
Brandon RoldaninSystem WeaknessHow to get started hacking django applicationsDjango is a python based web framework. In this writeup, i will teach you how to analyze django based applications . For this writeup, i…Jan 30, 2022Jan 30, 2022