A collection of my writings on various topics - from technical deep-dives to personal reflections, all in one place.
Blog
Thoughts. Stories. Insights!
- [WEB HACKING] Easily trigger event handler for XSS/ClickJacking" using CSS(or stylesheet)
- [WEB HACKING] New attack vectors in SSRF(Server-Side Request Forgery) with URL Parser
- [WEB HACKING] OOXML XXE with Burp Suite(OOXML XXE 관련 Burp suite Extension)
- [WEB HACKING] PHP Comparison Operators Vulnerability for Password Cracking
- [WEB HACKING] Retire.js를 이용해 JS Library 취약점 찾기
- [WEB HACKING] SQLite SQL Injection and Payload
- [WEB HACKING] Struts2 RCE(CVE-2017-5638, S2-045) 테스트 및 docker file 공유
- [WEB HACKING] SWF Debugging with ffdec(jpexs)
- [WEB HACKING] SWF(Flash) Vulnerability Analysis Techniques