Published inInfoSec Write-upsFinding vulnerabilities on flask-cors libraryFinding vulnerabilities on cors librariesDec 31, 2024Dec 31, 2024
IDOR in support.mozilla.org through Code ReviewI was trying to improve my static analysis code, specifically django apps, so i decided to hack a random project in github. And i found…Mar 2, 2022Mar 2, 2022
Bookwyrm Server Side Request ForgeryWhile reading the code of bookwyrm, i encounter this endpointFeb 14, 2022Feb 14, 2022
Hacking into school management systems. Reflected XSS To RCEAs a hacker, we are asked a million times before if we can hack into their school system and change their grades.Feb 8, 20227Feb 8, 20227
Hacking and reverse engineering il2cpp games with ghidraLast writeup, we talk about how to hack unity games compiled on mono. This time, we will be hacking unity games compiled in il2cpp. IL2CPP…Feb 7, 20223Feb 7, 20223
Published inSystem WeaknessHow to get started hacking django applicationsDjango is a python based web framework. In this writeup, i will teach you how to analyze django based applications . For this writeup, i…Jan 30, 2022Jan 30, 2022
Universal Esp for Il2cpp Unity GamesIn this writeup i will be showing you how to make an esp on any unity games that is il2cpp compiled. This writeup is inspired by…Dec 26, 20211Dec 26, 20211
Hacking the Tenda AC10–1200 Router Part 4: sscanf buffer overflowIn this writeup, i will show you a sscanf buffer overflow that i found in tenda ac10–1200. I tried reporting it but no response, so i…Dec 23, 2021Dec 23, 2021
Hacking the dlink DIR-615 for fun and no profit Part 5: Multiple RCE’sIts been a while since i last did some iot hacking and i missed it. So i decided to try it again with my trusty target, dlink dir-615. And…Dec 16, 2021Dec 16, 2021
The Science (math) behind AimbotWhile i was doing my own research about making aimbot, i found the tutorials in the internet are either inconsistent, the techniques differ…Dec 4, 20211Dec 4, 20211
Game Hacking with Python and cheat engineHi. In this write up, i will be showing you, how to hack games by editing the memory with cheat engine and will also write a program in…Nov 11, 20212Nov 11, 20212
Support Board 3.3.4 Arbitrary File Deletion to Remote Code ExecutionHi. In this writeup, i will show you a bug that i found. Allowing an Authenticated user to delete any file in the system in the Support…Oct 18, 20211Oct 18, 20211
How to get started Hacking Wordpress PluginsHi. In this writeup, i will teach you everything that i learnt and a methodology on how to get started hacking wordpress plugins. Keep in…Sep 28, 2021Sep 28, 2021
SQL injection in harvard subdomainHi. In this writeup, i will show you a sqli that i found in harvard and also, a xss as a bonusSep 2, 20214Sep 2, 20214
Hacking the Tenda AC10–1200 Router Part 3: Yet Another Buffer OverflowHi. This is my third writeup in my hacking the tenda ac10 series where i try to get a cve. Lets get started.Aug 10, 2021Aug 10, 2021
