Skip to content

All Posts

Search

Search for:

0xFFFF@blog:~$

Zero-day exploit development, hacking and cybersecurity research, bug bounty writeups and tutorials, networking, programming and development, quantum computing and security, and many other infosec topics.

Want access to private hunting methodologies, filter bypasses, additional blog content, private exploit research, and more? Then subscribe to our weekly newsletter!

All Posts:

An overview of obscure spear-phishing techniques
eBay XSS Demo and guide to spear-phishing
Hiding backdoors/malware in DBMS services
Non-Conventional WAF/IDS evasion methods
Triggering Full Path Disclosure – the basics
Exploiting open redirects and bypassing filters
Pwning SWF’s – a guide to XSF and Flash Hacking
htaccess exploitation series – part #1
htaccess exploitation series – part #2
MyBB 0day – view hidden/premium content
MaianCart Preauth RCE 0day via elFinder
A guide to exploiting race condition bugs
SSH tips and tricks
OS Command Injection tutorial – part #1 (basics and filter evasion)
Zero-Day CraftCMS RCE via SSTI+XSS
Technique of the week #1: Reflected File Download
Technique of the week #2: SSI (Server-Side Include) injection
Being one of the first “outsiders” to legally hack the US Military
Hacking banks for fun and (no) profit: identifying targets for spear phishing

Like this:

Like Loading...

Follow 0xFFFF@blog:~$ on WordPress.com

Subscribe to Blog via Email

Email Address:

Recent Posts

Hacking banks for fun and (no) profit: Identifying targets for spear phishing
Protected: “Threat Attribution” is a meme. Here’s why (Part #1).
Being one of the first “outsiders” to legally help secure the US Military (Part #1)
Demons in the database: Hiding backdoors/malware in (r)DBMS Services – Part #1
Technique of the week – SSI (Server-Side Include) Injection

RSS - Posts

© 2022 0xFFFF@blog:~$

Follow Following
- 0xFFFF@blog:~$
- Already have a WordPress.com account? Log in now.

%d bloggers like this: