Tag exploits

Spotting a Fake Exploit

Backround On April 12, 2022 Microsoft Announced CVE-2022-24500, a Windows SMB Remote Code Execution Vulnerability. The CVE clearly states that this vulnerability requires interaction from the end user. Fake Exploit A fake exploit was posted on May 18, 2022 to…

Howto: Web Application Exploits and Defenses

Want to learn how to hack a website? This tutorial -> explains how to attack and defend against: Cross-Site Scripting (XSS) Client-State Manipulation Cross-Site Request Forgery (XSRF) Cross Site Script Inclusion (XSSI) Denial of Service Code Execution Configuration Vulnerabilities…