Web Application

File Upload Vulnerabilities

Exploiting file upload vulnerabilities to execute arbitrary code.

Web Application

SQL Injection

SQL Injection for MySQL databases.

Web Application

XML External Entity Injection (XXE)

Exploiting XML parsers.

Web Application

Web Content Discovery

Identifying web content to launch further attacks.

Web Application

Cross Site Scripting (XSS)

Injecting malicious code into web applications.

Malware Dev

Shellcode Obfuscation

Encoding Shellcode for use within malware.

Web Application

Hack The Box Certified Bug Bounty Hunter (HTB CBBH)

A review of the CBBH course and exam.

Malware Dev

Import Address Tables

Hiding IAT entries to evade detection.

Infrastructure

802.11 Wireless Attacks

Ways of gaining access to WPA-PSK networks.

Infrastructure

Cobalt Strike

Getting started with Cobalt Strike.

Web Application

Local File Inclusion (LFI) Attacks

Exploiting LFI vulnerabilities in web applications.

Web Application

Flask Session Cookies

Decoding Flask signed session cookies.