A collection of my writings on various topics - from technical deep-dives to personal reflections, all in one place.
Blog
Thoughts. Stories. Insights!
- XSS 없이 DOM 내 중요정보 탈취, CSP 우회하기(Eavading CSP and Critical data leakage No XSS)
- XSS Polyglot Challenge(v2)에 참여하며 XSS에 대한 고민을 더 해봅시다!
- YSoSerial - Java object deserialization payload generator
- 우분투 18.04에서 OBS Studio 설치 및 스트리밍 환경 구성(+Android 화면 출력하기)
- APT package manager RCE(Bypass file signatures via CRLF Injection / CVE-2019-3462)
- Arachni scanner에서 Webhook으로 Slack 연동하기(Send msg to slack when arachni scan is complete)
- AutoSource - Automated Source Code Review Framework Integrated With SonarQube
- Burp Beautifier - Beautifying JSON/JS/HTML/XML In Burp Suite
- Burp collaborator 인증서 에러 해결하기(certificate error solution)