CSP Bypass via old jQuery – Thanks parseHTML!

I completed a fun CSP bypass recently and wanted to share my solution.

Continue reading

1 Comment

Filed under Security Not Included

Using SerializationDumper for Java Deserialization and CTFs

I recently found out about SerializationDumper, and I wanted to share an example usage.

Continue reading

2 Comments

Filed under Security Not Included

Reverse Electron Apps – EverSecMeet at BSidesRDU

During the BSidesRDU CTF, there was a challenge to reverse Electron apps.

Continue reading

1 Comment

Filed under Security Not Included

BSides RDU EverSec CTF – Challenge Solutions

Now that it's over, I wanted to share my write-ups for the BSides RDU EverSec CTF.

Continue reading

Leave a Comment

Filed under Security Not Included

FaradaySec CTF – JavaScript Encryption Plus Trolling

I tried to compete in the FaradaySec CTF recently and wanted to share the one flag that I captured.

Continue reading

Leave a Comment

Filed under Security Not Included

Jira Username Enumeration (CVE-2019-8446)

I got to perform some Jira username enumeration on a recent engagement, and I wanted to share the write-up on it.

Continue reading

1 Comment

Filed under Security Not Included

BSidesRDU 2019 – Security Dumpster Fire

Yesterday (18 October) was BSidesRDU 2019, so it's time for another conference blog post!

Continue reading

Leave a Comment

Filed under Security Not Included

BofA Forensics and Volatility for the Win (DerbyCon 9)

My last solution during the CTF was the BofA forensics challenge.

Continue reading

Leave a Comment

Filed under Security Not Included

BofA CTF Part 2 – Climbing the Scoreboard (DerbyCon 9)

Another week, and another batch of write-ups from the BofA CTF!

Continue reading

Leave a Comment

Filed under Security Not Included

Bank of America CTF – Challenge Coins @ DerbyCon 9

I took part in the Bank of America CTF during the last DerbyCon, and I wanted to share some of my write-ups.

Continue reading

Leave a Comment

Filed under Security Not Included