As someone even remotely affiliated with Penetration Testing, knowing about the OWASP [ Open Worldwide Application Security Project] is fundamental. Content Discovery Firstly, we should ask, in t...

Here’s an intro into privilege escalation for pretty much anybody on the security field. For now, it’s pretty much only Linux at the moment. My spelling for Privilege is all over the place, so bewa...

Out of the blue, let’s learn about XXE vulnerabilities. Even though, I’m not a web guy I kind of feel compelled to learn these stuff as part of a CTF challenge. XML External Entity (XXE) is an app...