Red Team Operator | Bug Hunter.

HOME
ARCHIVES
ABOUT

Home Archives

Archives

Cancel

Archives

2023

26 Jun Navigating Stealthy WMI Lateral Movement
23 May Harnessing the Power of Cobalt Strike Profiles for EDR Evasion
02 May Masking the Implant with Stack Encryption
05 Feb Shellcodes are dead, long live Fileless Shellcodes

2022

30 May The more predictable you are, the less you get detected - hiding malicious shellcodes via Shannon encoding

2021

09 Oct Hunting for Prototype Pollution and it's vulnerable code on JS libraries
05 Sep Case study on SQL Injection WAF bypassing via SQL Functions
10 Mar Exploiting HTTP Request Smuggling (TE.CL)- XSS to website takeover [Bug Hunting]

2020

06 Dec Content-Security-Policy Bypass to perform XSS using MIME sniffing [Bug Hunting]
24 Oct Bypassing WAF to do advanced Error-Based SQL Injection [Bug Hunting]
04 Oct Leveraging LFI to RCE in a website with +20000 users [Bug Hunting]
28 May Bypassing WAF to perform XSS [Bug Hunting]
05 Apr JSON Web Token Exploitation - Red Team Pentesting

© 2024 Kleiton Kurti. Some rights reserved.

Powered by Jekyll with kleiton0x7e theme.

Trending Tags