Research

- LiveHelperChat - Remote Code Execution via Vulnerable Theme Upload Function

BugBounty

- Burp Suite Certified Practitioner Exam: Review and Insights

- Self XSS to Stored XSS through IDOR

- Data Exfiltration through Blind XXE on PDF Generator

- Presentation Slides from Prishtina InfoSec Meetup #2

- Configuring Frida with BurpSuite and Genymotion to bypass SSL Pinning

- Bug Bounty - Information Disclosure through error message + WAF Bypass led to Local File Inclusion

CTF7E4

- CTF7E4 - Web Challenges

- CTF7E4 - Steganography Challenges

- CTF7E4 - Programming Challenges

- CTF7E4 - Forensics Challenges

- CTF7E4 - WIZARD Machine

- CTF7E4 - UNICORN Machine

- CTF7E4 - PEGASUS Machine

- CTF7E4 - HARP Machine

- CTF7E4 - ELK Machine

Pentest

- Exploiting a Stack Based Buffer Overflow (OSCP Preparation)