A guide to exploit and escalate from a simple Cross-site Scripting (XSS) to a Local File Inclusion (LFI) in Android Apps 🔓 “The more you understand the code, the more able you are to hack it” In...
Resolution of APKey Challenge of Hack The Box 🔬 “Analyze it, understand it and BREAK it!”.. Introduction This challenge includes mobile reverse engineering, understanding of the Android basics l...
Intro I wanted to write this post since I was aware of the importance of mental health working in cybersecurity. Sometimes you may have noticed that after hours of hard work, your mind cannot focu...
Intro: Before this story begins… Starting with this write-up, I’d like to write a few words about this finding and its history. Around August 2023, I met a person who is currently a big friend an...
Resolution of Instant Machine of Hack The Box 📲 “It’s time to hack Mobile Apps! Reverse Engineering is our ally ;)” Enumeration Let’s start hacking this machine by first performing a basic bu...
Resolution of Clicker Machine of Hack The Box 🔬 “Cool Hacking always have Reverse Engineering…” Enumeration Scan ports with Nmap looking for open ports via TCP protocol (default of Nmap), s...
En la actualidad todos nos comunicamos por correo electrĂłnico (email), tanto en nuestro trabajo como para registrarnos en sitios web, para iniciar sesiĂłn en cuentas bancarias digitales y un sin fin...
It is possible to use FFUF like alternative to bypass Burp Suite Community Edition’s Intruder attacks delay? The answer is: Yes! you can. PoC Burp Suite Community Edition is very good to use t...
Resolution of GoodGames machine of Hack The Box 🎮 “¡Hacking is the BEST GAME!” First we scan the machine for open ports with Nmap: sudo nmap 10.10.11.130 -p- --open --min-rate 5000 -sS -Pn -oG o...
Resolution of Validation machine of Hack The Box 💉 “Machine vulnerable to SQL Injection !!” As always, we first check that we have a connection to the victim machine, from our attacking machine. ...