I am a computer person who likes to play with networking, security, and data. Also creates software as passion projects. I post my writings that are too long for me to rant in other forums
CVE-2024-46455 : XML eXternal Entity vulnerability in unstructured.io <= 0.14.2
Before proceeding I would like to give a shoutout to my awesome friend and colleagueMohit Kwho tagged along in this journey and played a pivotal role. Summary This blog is...
Hosting your SecondBrain for FREE ! (ft. Cloudflare)
A very happy new year to you all !!! This is my first blog post of this year, hope this will benefit people who are interested on personal knowledge management...
Windows PIDs: An Absolute Beauty
We all have come across the famous application called Task Manager. But have you looked at the details tab, which shows PID or the Process ID for each Process running...
Brewing RCEs by validating Java Beans
Before exploiting the vulnerability and hacking into servers, let us take a minute to understand what this vulnerability is all about. I won't cover much detail, as many researchers have...
Zoho ManageEngine AD Audit Plus CVE 2022-28219 : Unauthenticated RCE
TLDR ; ManageEngine AD Audit Plus is affected with a series of vulnerabilities like XXE Injection, Java De-serialization and Path traversal; which can be chained together to achieve Remote Code...
Browser Security - Same Origin Policy
Same Origin policy As per the documentation in Mozilla Web Docs It helps isolate potentially malicious documents, reducing possible attack vectors. For example, it prevents a malicious website on the...
Email aliases as Security Feature ???
What is an Email alias ?? For those who don't know email aliases, they basically works as an email forwarder with custom word in the email address. This helps you...