Security reports: efficient and straightforward. The simplest way to detect and fix vulnerabilities

DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelligent domain name variations to assist in subdomain discove...

Burpsuite Extension to bypass 403 restricted directory - sting8k/BurpSuite_403Bypasser

Abstract :
-----------------
Do you ever wonder about the vulnerabilities you've missed? Why didn't they show themselves - and will they be discovered by somebody else later?

Certain vulnerabilities have a knack for evading auditors. As we enter the age…

The recent rise of HTTP Request Smuggling has seen a flood of critical findings enabling near-complete compromise of numerous major websites. However, the threat has been confined to attacker-accessib

The goal of this research is to portray the bigger picture of potential attacks on a reverse proxy or the backend servers behind it. In the main part of the article, I will show some examples of vulnerable configurations and exploitation of attacks on various…

A proxy server is a go‑between or intermediary server that forwards requests for content from multiple clients to different servers across…

A few months ago, I embarked on a security bug hunt within the scope of a private program available through the Intigriti platform. During this endeavor, I encountered an intriguing anomaly while analyzing the redirect from HTTP to HTTPS traffic on a particular…

Place to store my thoughts on all things information-security related. Hopefully you find something of interest. Ramblings are my own. Charlton Smith

Earn $10,000 on bugbounty with this little trick!