Fady's Technical Blog
  • Home
Meta's SparkAR RCE Via ZIP Path Traversal
binary

Meta's SparkAR RCE Via ZIP Path Traversal

Hi Everyone, As promised this is the write-up for the Spark AR
Read More
[CVE-2021-28379] Abusing file uploads to get an SSH backdoor
RCE

[CVE-2021-28379] Abusing file uploads to get an SSH backdoor

Note: To fully understand the exploit you will need to fully understand
Read More
Solving BugPoC XSS Challenge
bugpoc

Solving BugPoC XSS Challenge

Hi, This is my write up for BugPoc XSS challenge, I will
Read More
Getting Started with Frida : Hooking a Function and Replacing its Arguments
frida

Getting Started with Frida : Hooking a Function and Replacing its Arguments

Getting started with frida.
Read More
Go Local : Solving intigriti 3rd XSS Challenge
xss

Go Local : Solving intigriti 3rd XSS Challenge

Few hours ago intigirit posted their third XSS challenge, the solution of
Read More
An Hour with Ghidra : The Good and The Ugly
Ghidra

An Hour with Ghidra : The Good and The Ugly

So, the NSA decided to release their reverse engineering tool named Ghidra,
Read More
UPNP Attacks : Hello Old Friend
upnp

UPNP Attacks : Hello Old Friend

Update : I don't have a complete evidence that the attacks were UPNP
Read More
AFL / WinAFL Tips and Tricks
AFL / WinAFL Tips and Tricks
AFL

AFL / WinAFL Tips and Tricks

Hi there As you all know there are so many tutorials online
Read More
How I Discovered XSS that Affects around 20 Uber Subdomains
How I Discovered XSS that Affects around 20 Uber Subdomains
bugbounty

How I Discovered XSS that Affects around 20 Uber Subdomains

Hi again, Welcome my first bug bounty write up, I don't do
Read More

Tags

AFL 5
angular 1
angular csp 1
Arbitrary File Write 1
binary 2
bugbounty 3
bugpoc 1
Certificates 3
challenge 2
chrome 1
chromecast 1
Classes 1
coverage 1
csp 1
csp bypass 1
CSRF 1
CTF 1
CVE 1
exploit 2
exploit-development 6
exploitation 8
Feedback 4
File upload 1
frida 1
Fuzzing 6
Genetic 5
Ghidra 1
hackerone 1
Hacking 12
intigriti 1
IOT 1
Javascript 1
Malware Analysis 1
MYFUZZER 4
Namespaces 1
offesnive-security 3
offsec 3
openvpn 1
OSCE, 2
OSCP 2
patreon 1
Pentesting 4
python 1
Quick 2
RCE 2
RE 2
regex 1
Reverse Engineering 3
saml 1
security 4
smart 1
soap 1
software 1
ssdp 1
tool 4
tv 1
uber 1
upnp 1
VestaCP 1
VestaCP Exploit 1
VTable 1
vulnerability 8
Welcome 1
Writeup 2
WriteUps 1
xss 3
zero day 2

Recent Posts

Meta's SparkAR RCE Via ZIP Path Traversal
Apr 7, 2022
[CVE-2021-28379] Abusing file uploads to get an SSH backdoor
Mar 18, 2021
Solving BugPoC XSS Challenge
Aug 12, 2020
Powered by Ghost
  • Home

Tags

AFL 5
angular 1
angular csp 1
Arbitrary File Write 1
binary 2
bugbounty 3
bugpoc 1
Certificates 3
challenge 2
chrome 1
chromecast 1
Classes 1
coverage 1
csp 1
csp bypass 1
CSRF 1
CTF 1
CVE 1
exploit 2
exploit-development 6
exploitation 8
Feedback 4
File upload 1
frida 1
Fuzzing 6
Genetic 5
Ghidra 1
hackerone 1
Hacking 12
intigriti 1
IOT 1
Javascript 1
Malware Analysis 1
MYFUZZER 4
Namespaces 1
offesnive-security 3
offsec 3
openvpn 1
OSCE, 2
OSCP 2
patreon 1
Pentesting 4
python 1
Quick 2
RCE 2
RE 2
regex 1
Reverse Engineering 3
saml 1
security 4
smart 1
soap 1
software 1
ssdp 1
tool 4
tv 1
uber 1
upnp 1
VestaCP 1
VestaCP Exploit 1
VTable 1
vulnerability 8
Welcome 1
Writeup 2
WriteUps 1
xss 3
zero day 2

Recent Posts

Meta's SparkAR RCE Via ZIP Path Traversal
Apr 7, 2022
[CVE-2021-28379] Abusing file uploads to get an SSH backdoor
Mar 18, 2021
Solving BugPoC XSS Challenge
Aug 12, 2020