This blog centers on the identification and exploitation of vulnerabilities within OAuth Authentication functionality, specifically focusing on the OAuth 2.0 version. It features an in-depth walkthrough of PortSwigger’s labs, where you can explore OAuth Authentication in more detail.
PortSwigger- OAuth Authentication Read More »
In this blog, we’re going to focus on how we can find and exploit File Upload vulnerabilities on your websites. I’m going to take you through a thorough walkthrough of all the PortSwigger Labs. I assume you have a basic understanding of file types.
PortSwigger- File Upload Vulnerabilities Read More »
This writeup focuses on the hidden risks of WebSocket vulnerabilities. Learn how attackers exploit weaknesses in WebSocket protocols and how to secure your web applications against potential threats using PortSwigger’s labs
PortSwigger- WebSocket Vulnerability Read More »
In this blog, we are going to focus on how to find and use the OS Command Injection vulnerabilities on the websites. In this blog, I will be going through the entire PortSwigger’s Lab. I assume that you are familiar with the commands of Linux and Windows Operating Systems.
Portswigger- Command Injection Vulnerability Read More »
This blog will provide an in-depth analysis of how to identify and take advantage of path traversal vulnerabilities found on websites, also referred to as directory traversal vulnerabilities. It will provide a comprehensive overview of the PortSwigger’s Labs on Path Traversal vulnerability.
PortSwigger- Path Traversal Vulnerability Read More »
In this blog, I’m going to show you how to find and use hidden attack surfaces for XXE (XML External Entities) injections on websites. I’m going to give you a quick overview of what PortSwigger has to offer when it comes to XXE attack testing. So let’s get started and start testing!
PortSwigger- Finding Hidden XXE Attack Surfaces Read More »
In this blog, we’re going to focus on how to find and use Blind XML External Entity (XXE) vulnerabilities on websites. That’s why we’re here to walk you through a step-by-step procedure of PortSwigger’s blind XXE practitioner labs.
Portswigger- Blind XXE Injection Read More »
This blog focuses on how we can identify and exploit XML External Entities (XXE) Vulnerabilities on websites. So, here we will be providing a detailed walkthrough of PortSwigger’s XXE Apprentice Lab.
PortSwigger | Overview of XXE Vulnerability | Walkthrough Read More »
