Year: 2019

Using Scrcpy to Mirror Android Screens

I recently learned about scrcpy, and it makes Android mirroring so much easier. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it all. To show …

Using Scrcpy to Mirror Android Screens Read More »

Hack the Box Nibbles Walkthrough – First HtB!

I recently solved the Hack the Box Nibbles box and wanted to share my walkthrough. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it all. …

Hack the Box Nibbles Walkthrough – First HtB! Read More »

CSP Bypass via old jQuery – Thanks parseHTML!

I completed a fun CSP bypass recently and wanted to share my solution. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it all. To show …

CSP Bypass via old jQuery – Thanks parseHTML! Read More »

Using SerializationDumper for Java Deserialization and CTFs

I recently found out about SerializationDumper, and I wanted to share an example usage. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it all. To …

Using SerializationDumper for Java Deserialization and CTFs Read More »

Reverse Electron Apps – EverSecMeet at BSidesRDU

During the BSidesRDU CTF, there was a challenge to reverse Electron apps. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it all. To show for …

Reverse Electron Apps – EverSecMeet at BSidesRDU Read More »

BSides RDU EverSec CTF – Challenge Solutions

Now that it’s over, I wanted to share my write-ups for the BSides RDU EverSec CTF. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it …

BSides RDU EverSec CTF – Challenge Solutions Read More »

FaradaySec CTF – JavaScript Encryption Plus Trolling

I tried to compete in the FaradaySec CTF recently and wanted to share the one flag that I captured. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; …

FaradaySec CTF – JavaScript Encryption Plus Trolling Read More »

Jira Username Enumeration (CVE-2019-8446)

I got to perform some Jira username enumeration on a recent engagement, and I wanted to share the write-up on it. Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it …

Jira Username Enumeration (CVE-2019-8446) Read More »

BSidesRDU 2019 – Security Dumpster Fire

Yesterday (18 October) was BSidesRDU 2019, so it’s time for another conference blog post! Ray DoyleRay Doyle is an avid pentester/security enthusiast/beer connoisseur who has worked in IT for almost 16 years now. From building machines and the software on them, to breaking into them and tearing it all down; he’s done it all. To …

BSidesRDU 2019 – Security Dumpster Fire Read More »