Home
Walkthroughs
Portswigger Labs
Sherlocks
Articles
Tools
Cheatsheets
Homelab
About Me
Tags
Web Exploitation
Oct 3, 2025
DOM XSS Lab 5: jQuery :contains() selector sink with location.hash source
Oct 1, 2025
DOM XSS Lab 4: jQuery anchor href sink with location.search source
Sep 30, 2025
DOM XSS Lab 3: Exploiting innerHTML with location.search in the Search Message
Sep 29, 2025
DOM XSS Lab 2: Exploiting document.write with location.search in Select Elements
Jun 2, 2025
Strutted HTB Walkthrough: Apache Struts2 CVE-2024-53677 File Upload Exploitation
Jan 12, 2025
RedPanda HTB Walkthrough: Spring Boot, SSTI, and Privilege Escalation