HAHWUL Logo
  • WHO
  • BLOG
  • SEC
  • DEV
  • PROJECTS
  • WHO
  • BLOG
  • SEC
  • DEV
  • PROJECTS
    • 한국어

    OCTOBER 16, 2021

    Cookie Bomb Attack

    NOVEMBER 22, 2021

    Dependency Confusion

    FEBRUARY 20, 2022

    Insecure Deserialization

    AUGUST 09, 2022

    GraphQL Injection

    APRIL 09, 2022

    XSHM Attack

    Cross Site History Manipulation

    SEPTEMBER 07, 2021

    CSV Injection

    AUGUST 12, 2021

    H2C Smuggling

    OCTOBER 26, 2021

    Click Jacking

    SEPTEMBER 07, 2021

    CRLF Injection

    JUNE 19, 2022

    OGNL Injection

    Object-Graph Navigation Language Injection

    AUGUST 12, 2021

    CSRF

    Cross-Site Request Forgery

    NOVEMBER 22, 2021

    CSTI Attack

    Client-Side Template Injection

    FEBRUARY 27, 2022

    Relative Path Overwrite

    RPO Attack

    SEPTEMBER 05, 2021

    JSON Hijacking

    SEPTEMBER 09, 2021

    Path Traversal (Directory traversal)

    JANUARY 12, 2021

    HTTP Request Smuggling

    HRS Attack

    NOVEMBER 21, 2021

    Web Cache Deception

    APRIL 09, 2022

    LaTex Injection

    DECEMBER 23, 2022

    Client-Side Desync Attack

    CSD Attack

    NOVEMBER 01, 2021

    RFD Attack

    Remote File Download

    NOVEMBER 22, 2021

    SSTI Attack

    Server-Side Template Injection

    JANUARY 27, 2022

    XXE

    XML External Entity

    OCTOBER 16, 2021

    SQL Injection

    MAY 07, 2022

    XS-Leaks

    SEPTEMBER 10, 2021

    Open Redirect

    JUNE 25, 2022

    File Inclusion

    LFI & RFI

    AUGUST 23, 2021

    CSWSH Attack

    Cross-Site WebSocket Hijacking

    SEPTEMBER 07, 2022

    ORM Injection

    APRIL 18, 2022

    Prototype Pollution

    MAY 22, 2022

    Email Injection

    SMTP Injection & Mail Injection

    DECEMBER 19, 2021

    ESI Injection

    Edge Side Include Injection

    SEPTEMBER 20, 2021

    Zip Slip

    MARCH 09, 2023

    SNI Injection

    MAY 01, 2022

    Type Juggling

    Loose Comparison Bug

    MARCH 30, 2022

    Regex Injection

    FEBRUARY 04, 2023

    Zip Bomb

    SEPTEMBER 10, 2021

    Command Injection

    APRIL 30, 2022

    IDOR Attack

    Insecure Direct Object Reference

    FEBRUARY 27, 2022

    Server-Side Javascript Injection

    SSJI Attack

    AUGUST 12, 2021

    SSRF

    Server-Side Request Forgery

    JUNE 17, 2022

    NoSQL Injection

    OCTOBER 24, 2021

    LDAP Injection

    OCTOBER 26, 2021

    Web Cache Poisoning

    OCTOBER 08, 2021

    XST

    Cross-Site Tracing

    SEPTEMBER 20, 2021

    HTTP Parameter Pollution

    HPP Attack

    APRIL 10, 2022

    Brute Force

    MARCH 30, 2022

    ReDOS Attack

    Regex DOS

    AUGUST 12, 2021

    Websocket Connection Smuggling

    WCS Attack

    JUNE 04, 2022

    CSS Injection

    MAY 01, 2022

    SAML Injection

    AUGUST 12, 2021

    XSS

    Cross-Site Scripting

    JULY 03, 2022

    Insecure File Upload

    JUNE 19, 2022

    EL Injection

    Expression Language Injection

    APRIL 07, 2022

    Log Injection

    MAY 21, 2022

    Github-Action Injection

    AUGUST 12, 2021

    Reverse Tabnabbing

    SEPTEMBER 21, 2022

    Subdomain Takeover

    SEPTEMBER 05, 2021

    JSONP Hijacking

    OCTOBER 08, 2021

    DOM Clobbering

    October 16, 2021

    Cookie Bomb Attack

    November 22, 2021

    Dependency Confusion

    February 20, 2022

    Insecure Deserialization

    August 09, 2022

    GraphQL Injection

    April 09, 2022

    XSHM Attack

    Cross Site History Manipulation

    September 07, 2021

    CSV Injection

    August 12, 2021

    H2C Smuggling

    October 26, 2021

    Click Jacking

    September 07, 2021

    CRLF Injection

    June 19, 2022

    OGNL Injection

    Object-Graph Navigation Language Injection

    August 12, 2021

    CSRF

    Cross-Site Request Forgery

    November 22, 2021

    CSTI Attack

    Client-Side Template Injection

    February 27, 2022

    Relative Path Overwrite

    RPO Attack

    September 05, 2021

    JSON Hijacking

    September 09, 2021

    Path Traversal (Directory traversal)

    January 12, 2021

    HTTP Request Smuggling

    HRS Attack

    November 21, 2021

    Web Cache Deception

    April 09, 2022

    LaTex Injection

    December 23, 2022

    Client-Side Desync Attack

    CSD Attack

    November 01, 2021

    RFD Attack

    Remote File Download

    November 22, 2021

    SSTI Attack

    Server-Side Template Injection

    January 27, 2022

    XXE

    XML External Entity

    October 16, 2021

    SQL Injection

    May 07, 2022

    XS-Leaks

    September 10, 2021

    Open Redirect

    June 25, 2022

    File Inclusion

    LFI & RFI

    August 23, 2021

    CSWSH Attack

    Cross-Site WebSocket Hijacking

    September 07, 2022

    ORM Injection

    April 18, 2022

    Prototype Pollution

    May 22, 2022

    Email Injection

    SMTP Injection & Mail Injection

    December 19, 2021

    ESI Injection

    Edge Side Include Injection

    September 20, 2021

    Zip Slip

    March 09, 2023

    SNI Injection

    May 01, 2022

    Type Juggling

    Loose Comparison Bug

    March 30, 2022

    Regex Injection

    February 04, 2023

    Zip Bomb

    September 10, 2021

    Command Injection

    April 30, 2022

    IDOR Attack

    Insecure Direct Object Reference

    February 27, 2022

    Server-Side Javascript Injection

    SSJI Attack

    August 12, 2021

    SSRF

    Server-Side Request Forgery

    June 17, 2022

    NoSQL Injection

    October 24, 2021

    LDAP Injection

    October 26, 2021

    Web Cache Poisoning

    October 08, 2021

    XST

    Cross-Site Tracing

    September 20, 2021

    HTTP Parameter Pollution

    HPP Attack

    April 10, 2022

    Brute Force

    March 30, 2022

    ReDOS Attack

    Regex DOS

    August 12, 2021

    Websocket Connection Smuggling

    WCS Attack

    June 04, 2022

    CSS Injection

    May 01, 2022

    SAML Injection

    August 12, 2021

    XSS

    Cross-Site Scripting

    July 03, 2022

    Insecure File Upload

    June 19, 2022

    EL Injection

    Expression Language Injection

    April 07, 2022

    Log Injection

    May 21, 2022

    Github-Action Injection

    August 12, 2021

    Reverse Tabnabbing

    September 21, 2022

    Subdomain Takeover

    September 05, 2021

    JSONP Hijacking

    October 08, 2021

    DOM Clobbering

    Contact Thanks Sitemap Random Feeds

    © 2025 HAHWUL
    Developed and Designed by Me

    • WHO
    • BLOG
    • SEC
    • DEV
    • PROJECTS

    • Language
      • ENGLISH
      • 한국어