Pwning a Server using Markdown

Pwning a Server using Markdown

Escalating a bug in a vulnerable markdown parser to exploit LFI and get RCE

Author
Aditya Dixit

5 min read

·

6.2K views

Exploiting OAuth: Journey to Account Takeover

Exploiting OAuth: Journey to Account Takeover

Author
Aditya Dixit

5 min read

·

2.9K views

A deep dive into Task Hijacking in Android

A deep dive into Task Hijacking in Android

Author
Aditya Dixit

6 min read

·

2.8K views

Hacking a Chrome Extension for Fun and Profit

Hacking a Chrome Extension for Fun and Profit

Aditya Dixit

6 min read

·

2.0K views

One-click SSL-Pinning Bypass Setup

One-click SSL-Pinning Bypass Setup

Aditya Dixit

2 min read

·

525 views

Leveraging XSS to Read Internal Files

Leveraging XSS to Read Internal Files

Aditya Dixit

2 min read

·

7.3K views

From Android Static Analysis to RCE on Production

From Android Static Analysis to RCE on Production

Aditya Dixit

3 min read

·

489 views

Bypassing Google Maps API Key Restrictions

Bypassing Google Maps API Key Restrictions

Aditya Dixit

4 min read

·

895 views

Exploiting JWT - Lack of Signature Verification

Exploiting JWT - Lack of Signature Verification

Aditya Dixit

3 min read

·

214 views

Android Pentesting CheatSheet

Android Pentesting CheatSheet

Aditya Dixit

5 min read

·

1.5K views

Exploiting Docker Registry

Exploiting Docker Registry

Aditya Dixit

3 min read

·

296 views