Fady's Technical Blog
  • Home
Web Security Roadmap
web security

Web Security Roadmap

Hi everyone, I tried to collect as much as I could in
Read More
Meta's SparkAR RCE Via ZIP Path Traversal
binary

Meta's SparkAR RCE Via ZIP Path Traversal

Hi Everyone, As promised this is the write-up for the Spark AR
Read More
[CVE-2021-28379] Abusing file uploads to get an SSH backdoor
RCE

[CVE-2021-28379] Abusing file uploads to get an SSH backdoor

Note: To fully understand the exploit you will need to fully understand
Read More
Solving BugPoC XSS Challenge
bugpoc

Solving BugPoC XSS Challenge

Hi, This is my write up for BugPoc XSS challenge, I will
Read More
Getting Started with Frida : Hooking a Function and Replacing its Arguments
frida

Getting Started with Frida : Hooking a Function and Replacing its Arguments

Getting started with frida.
Read More
Go Local : Solving intigriti 3rd XSS Challenge
xss

Go Local : Solving intigriti 3rd XSS Challenge

Few hours ago intigirit posted their third XSS challenge, the solution of
Read More
An Hour with Ghidra : The Good and The Ugly
Ghidra

An Hour with Ghidra : The Good and The Ugly

So, the NSA decided to release their reverse engineering tool named Ghidra,
Read More
UPNP Attacks : Hello Old Friend
upnp

UPNP Attacks : Hello Old Friend

Update : I don't have a complete evidence that the attacks were UPNP
Read More
AFL / WinAFL Tips and Tricks
AFL / WinAFL Tips and Tricks
AFL

AFL / WinAFL Tips and Tricks

Hi there As you all know there are so many tutorials online
Read More

Tags

AFL 5
angular 1
angular csp 1
Arbitrary File Write 1
binary 2
bugbounty 3
bugpoc 1
Certificates 3
challenge 2
chrome 1
chromecast 1
Classes 1
coverage 1
csp 1
csp bypass 1
CSRF 1
CTF 1
CVE 1
exploit 2
exploit-development 6
exploitation 8
Feedback 4
File upload 1
frida 1
Fuzzing 6
Genetic 5
Getting Started 1
Ghidra 1
hackerone 1
Hacking 13
intigriti 1
IOT 1
Javascript 1
Malware Analysis 1
MYFUZZER 4
Namespaces 1
offesnive-security 3
offsec 3
openvpn 1
OSCE, 2
OSCP 2
patreon 1
Pentesting 4
python 1
Quick 2
RCE 2
RE 2
regex 1
Reverse Engineering 3
road map 1
saml 1
security 5
smart 1
soap 1
software 1
ssdp 1
tool 4
tv 1
uber 1
upnp 1
VestaCP 1
VestaCP Exploit 1
VTable 1
vulnerability 8
web security 1
Welcome 1
Writeup 2
WriteUps 1
xss 3
zero day 2

Recent Posts

Web Security Roadmap
Dec 14, 2022
Meta's SparkAR RCE Via ZIP Path Traversal
Apr 7, 2022
[CVE-2021-28379] Abusing file uploads to get an SSH backdoor
Mar 18, 2021
Powered by Ghost
  • Home

Tags

AFL 5
angular 1
angular csp 1
Arbitrary File Write 1
binary 2
bugbounty 3
bugpoc 1
Certificates 3
challenge 2
chrome 1
chromecast 1
Classes 1
coverage 1
csp 1
csp bypass 1
CSRF 1
CTF 1
CVE 1
exploit 2
exploit-development 6
exploitation 8
Feedback 4
File upload 1
frida 1
Fuzzing 6
Genetic 5
Getting Started 1
Ghidra 1
hackerone 1
Hacking 13
intigriti 1
IOT 1
Javascript 1
Malware Analysis 1
MYFUZZER 4
Namespaces 1
offesnive-security 3
offsec 3
openvpn 1
OSCE, 2
OSCP 2
patreon 1
Pentesting 4
python 1
Quick 2
RCE 2
RE 2
regex 1
Reverse Engineering 3
road map 1
saml 1
security 5
smart 1
soap 1
software 1
ssdp 1
tool 4
tv 1
uber 1
upnp 1
VestaCP 1
VestaCP Exploit 1
VTable 1
vulnerability 8
web security 1
Welcome 1
Writeup 2
WriteUps 1
xss 3
zero day 2

Recent Posts

Web Security Roadmap
Dec 14, 2022
Meta's SparkAR RCE Via ZIP Path Traversal
Apr 7, 2022
[CVE-2021-28379] Abusing file uploads to get an SSH backdoor
Mar 18, 2021