Web SSRF - Location and Exploitation Server Side Request Forgery (SSRF) is an exploit that allows an attacker to make arbitrary HTTP requests from the web server. These could be to access an internal network or to reach out
Owasp Web OWASP Top 10 XXE (or taking liberties with acronyms) As in my article on Command Injection the aim of this post is to consolidate my knowledge on an issue in the OWASP Top 10 and add to it as I learn more
Networking Htb Web Hacking WebDAV with Granny and Grandpa Web Distributed Authoring and Versioning (WebDAV) is an extension on HTTP that provides further methods to allow users to control content more readily. Webdav allows authorised users to create, move and alter files
Web Finding, Exploiting and Escalating LFI Local File Inclusion or LFI is a vulnerability in web applications where input can be manipulated to read other files on the system that were not intented to be read by the web
Owasp Web OWASP Top 10 OS Command Injection I have decided to dig a little deeper into the OWASP top 10. I find web security such a vast subject (with new issues being found daily) that instead of chasing around every