ASCWG Qualification 2023 Web Challenge | Gr00tHello folks, this is the official write-up for a Web CTF challenge at Qualification for ASCWG 2023.Aug 7, 2023Aug 7, 2023
Defeat the HttpOnly flag to achieve Account Takeover | RXSSHello folks, I’m Mohamed Tarek aka Timooon at Bugcrowd and HackerOne, In this write up I will explain how I get the victim’s session when…Aug 10, 20227Aug 10, 20227
Most Common Attacks in android Apps | InsecureShopInsecureShop is an Android application written in Kotlin that is designed to be intentionally vulnerable. It is a great asset for…Aug 1, 2022Aug 1, 2022
How I get Full Account Takeover via stealing action’s login form | XSSToday I will explain How I get Full Account Takeover via stealing the action of the login form when you have XSS on the login page.Aug 1, 20223Aug 1, 20223
