Brandon RoldanAutomating CSRF Detection in WordPress Plugins with SemgrepIntroduction6 min read·Nov 1, 2023----
Brandon RoldanIDOR in support.mozilla.org through Code ReviewI was trying to improve my static analysis code, specifically django apps, so i decided to hack a random project in github. And i found…2 min read·Mar 2, 2022----
Brandon RoldanBookwyrm Server Side Request ForgeryWhile reading the code of bookwyrm, i encounter this endpoint2 min read·Feb 14, 2022----
Brandon RoldanHacking into school management systems. Reflected XSS To RCEAs a hacker, we are asked a million times before if we can hack into their school system and change their grades.4 min read·Feb 8, 2022--9--9
Brandon RoldanHacking and reverse engineering il2cpp games with ghidraLast writeup, we talk about how to hack unity games compiled on mono. This time, we will be hacking unity games compiled in il2cpp. IL2CPP…4 min read·Feb 7, 2022--2--2
Brandon RoldaninSystem WeaknessHow to get started hacking django applicationsDjango is a python based web framework. In this writeup, i will teach you how to analyze django based applications . For this writeup, i…7 min read·Jan 30, 2022----