Categories

• consulting 1
• network security 11
• application security 17
• miscellaneous 2
• automation 2
• leadership 1
• cracking 2
• hacking 3
• projects 6

consulting

• Handling Missed Vulnerabilities

network security

• Handling Missed Vulnerabilities
• Proxying thru Virtual Client VPNs
• Getting Shell in Modern Restricted User Environments
• IPS Avoidance with Vulnerability Scanners
• Public Facing LDAP Enumeration
• Manual Local Hash Extraction
• Catching and Cleaning a Phish
• Taming the Stubborn Tomcat
• 7 Linux Shells Using Built-in Tools
• Defeating 802.1x with Marvin
• No Nmap, No Permissions, No Problem

application security

• Handling Missed Vulnerabilities
• Proxying thru Virtual Client VPNs
• Fun with XSShell
• Exploring SSTI in Flask/Jinja2 - Part 2
• Exploring SSTI in Flask/Jinja2
• Validating Redirects with Hyperlinks
• Regex: Regularly Exploitable
• Method Interchange: The Forgotten Vulnerability
• Burp Suite Visual Aids
• Session Fixation Demystified
• Cross-Site Trust Exploitation (XSTE)
• DOM-based Cross-Site Scripting, Revisited
• Defending Against Harvesting Attacks on Registration Systems
• Multi-POST Cross-Site Request Forgery
• Defending Against SSL Stripping Attacks
• Stealth Cookie Stealing (XSS technique)
• Local File Inclusion to Remote Command Execution using SSH

miscellaneous

• Cooling Down the Hottest Ticket in Town
• A Work in Progress

automation

• WUDS: Wi-Fi User Detection System
• Raspberry Pi - Pianobar

leadership

• Handling Missed Vulnerabilities

cracking

• Official Release: eapmd5crack.py
• Creating Complex Password Lists with John the Ripper

hacking

• Cooling Down the Hottest Ticket in Town
• ESPN Fantasy Football - The Complete Attack
• Hacking the DEFCON 18 Badge

projects

• Recon-ng Update (v4.6.0)
• Burp Suite Visual Aids
• Recon-ng Update (v4.0.0)
• Recon-ng Update (v3.3.3)
• Recon-ng Update (v3.0.3)
• Official Release: eapmd5crack.py