Breaking Crypto – Padding Oracle Attacks
Overview This post presents a lab-based demonstration of a padding oracle attack targeting AES-CBC with PKCS#7 padding. The aim is…
Read more
Breaking Crypto – Known Plaintext Attack on ECB – Abuse Password Reset for Account Takeover
OverviewThis write-up demonstrates a known-plaintext attack against AES-ECB within a controlled lab environment. It showcases how predictable password reset codes…
XXE in File Upload via Metadata
OverviewThis post demonstrates an XML External Entity (XXE) injection in a lab environment through a .docx file upload. The purpose…
Mass Assignment – Understanding Web Security
Mass Assignment Mass Assignment is a vulnerability that occurs when the web application defines variables from user input, even if…
Evading FireEye EX Email Filtering with the Dirty Screen Attack
Timeline Reported to FireEye on May 7th FireEye confirmed receipt of the vulnerability disclosure and stated that it was already…
Using CA Process Automation to Get Command Execution as SYSTEM
On internal penetration tests, it is common to get a foothold using man-in-the-middle techniques such as Link-Local Multicast Name Resolution…