Here I talk about anything, mostly technical topics:
This year's Posts
-
Quick tips for a better website
WebsiteWebsite PerformanceWebsite SecurityCloudflareGithub PagesJekyllPageSpeed Insights
2023
-
Expert Lab: Server-side Template Injection with a Custom Exploit
Web Application SecurityWeb Security AcademyExpert LabsServer-Side Template InjectionSSTIPHPTwig
-
Expert Lab: Developing a custom gadget chain for PHP deserialization
Web Application SecurityWeb Security AcademyExpert LabsInsecure DeserializationRemote Code ExecutionGadget ChainsPHP
2022
-
Lab: Exploiting PHP deserialization with a pre-built gadget chain
Web Application SecurityWeb Security AcademyLabsInsecure DeserializationRemote Code ExecutionGadget ChainsPHPPHPGGC
-
Expert Lab: Reflected XSS in a JavaScript URL with some characters blocked
Web Application SecurityWeb Security AcademyExpert LabsCross-Site ScriptingXSSJavascript
-
Expert Lab: Web Shell Upload via Race Condition
Web Application SecurityWeb Security AcademyExpert LabsFile Upload VulnerabilitiesRace Condition VulnerabilitiesTurbo IntruderExiftool
-
Handy Benchmarking Tools for your Website
WebWebsiteWeb Benchmarking ToolsWebsite PerformanceWebsite SecurityDNSSECTLSHTTP HeadersSecurity Headers
2021
-
Obsidian: A second brain, for you, forever
ObsidianKnowledge BasePersonal Knowledge ManagementNote TakingMarkdown