Exploiting difficult SQL injection vulnerabilities using sqlmap: Part 1 :
Interesting HTTP headers : If you have access to web logs, these headers can reveal some juicy info. Alternatively, some of these can be used for WAF bypassing.
BookFresh Tricky File Upload Bypass to RCE | SECURITY GEEK : Really fun write-up
M1ND-B3ND3R/BoopSuite : Why use this over aircrack-ng? This project is easier to use, identifies clients more quickly than airodump-ng, and displays less useless information. Additionally I can take requests and build them out as I […]
Tainted Leaks: Disinformation and Phishing With a Russian Nexus – The Citizen Lab : Key Points Documents stolen from a prominent journalist and critic of the Russian government were manipulated and then released as a […]
ThreatConnect research on FancyB : very much vendor fodder, but useful
Common weaknesses in your Windows network – Fox-IT | NTLM relay :