Category: Blog

July 25, 2025 3 months ago Blog, Exploit Dev, Walkthrough

Stack Overflows for Beginners — Level 5

Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 5 binary and work on exploiting it to get the next…

#binary exploitation#buffer overflow#exploit development#gdb#gets#msfvenom#PrependSetuid#privilege escalation#reverse engineering#setresuid#setreuid#setuid#stack overflow#VulnHub

July 24, 2025 3 months ago Blog, Exploit Dev, Walkthrough

Stack Overflows for Beginners — Level 4

Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 4 binary and work on exploiting it to get the next…

#binary exploitation#buffer overflow#call esp#exploit development#gdb#reverse engineering#reverse shell#stack overflow#strcpy#VulnHub

July 24, 2025 3 months ago Blog, Exploit Dev, Walkthrough

Linux Usermode Exploitation 101

Introduction The aim of this course is to train students in the fundamentals of Linux usermode exploitation. You will learn how stack memory works,…

July 24, 2025 3 months ago Blog, Exploit Dev, Walkthrough

Stack Overflows for Beginners — Level 3

Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 3 binary and work on exploiting it to get the next…

#binary exploitation#buffer overflow#exploit development#gdb#reverse engineering#stack overflow#strcpy#VulnHub

July 24, 2025 3 months ago Blog, Exploit Dev, Walkthrough

Stack Overflows for Beginners — Level 2

Welcome again to the Stack Overflows for Beginners series! In this post, we continue with the Level 2 binary and work on exploiting it to get the next…

#binary exploitation#buffer overflow#exploit development#gdb#ret2func#reverse engineering#stack overflow#strcpy#VulnHub

July 24, 2025 3 months ago Blog, Exploit Dev, Walkthrough

Stack Overflows for Beginners — Level 1

In this post, we’ll explore the fundamentals of exploiting stack-based buffer overflows using the “Stack Overflows for Beginners: 1.0.1” challenges from VulnHub. We’ll walk through…

#binary exploitation#buffer overflow#exploit development#gdb#reverse engineering#stack overflow#strcpy#VulnHub

April 3, 2024 2 years ago Blog, Walkthrough

Walkthrough: Config Editor app in Android

Affected Product Config Editor Affected version 1.0 CVE ID N/A Vulnerability Type Remote Code Execution Type MOBILEAPPS DescriptionCVE-2022-1471 identifies a critical unsafe deserialization vulnerability…

#android#CVE-2022-1471#mobile

June 16, 2023 2 years ago Blog, Exploits

CVE-2023-37152: Online Art gallery project 1.0 – Arbitrary File Upload (Unauthenticated)

Affected Product Online Art gallery project Affected version 1.0 CVE ID CVE-2023-37152 Vulnerability Type Arbitrary File Upload (Unauthenticated) Type WEBAPPS Description Online Art Gallery…

#CVE-2023-37152

June 13, 2023 2 years ago Blog, CVEs, Exploits

CVE-2023-36256: Online Examination System Project 1.0 – Cross-site request forgery (CSRF)

Affected Product Online Examination System Project Affected version 1.0 CVE ID CVE-2023-36256 Vulnerability Type Cross-site request forgery (CSRF) Type WEBAPPS Description The Online Examination…

#CVE-2023-36256

November 29, 2020 5 years ago Blog, CVEs, Exploits

CVE-2020-29168: Online Doctor Appointment Booking System PHP and Mysql 1.0 – ‘q’ SQL Injection

An SQL injection vulnerability was discovered in PHP Doctor Appointment System by me on 11/16/2020. In ‘getuser.php’ file, GET parameter ‘q’ is vulnerable. The…

#CVE-2023-36256