Aspiring cybersecurity "something".
Just starting my journey, lets see where I end up!
Discord: marduk_james
Twitter: @Marduk_James
Medium: @marduk.i.am
A lot of XSS write-ups focus on HTML injection (innerHTML, document.write, etc).
But navigation-based sinks are just as dangerous.
If user input reaches location.href, a javascript: URI can turn a redirect into code execution in the page’s context.
I put together a practical breakdown with examples and real-world patterns:
https://medium.com/@marduk.i.am/why-location-href-isnt-just-a-redirect-f7c77c0e4bcd
A breakdown of how execution context determines whether your payload fails or fires — using hands-on PortSwigger labs.
#xss #BugBounty #ethicalhacking #CyberSecurityAwareness
https://medium.com/@marduk.i.am/context-is-everything-a-practical-guide-to-xss-eff8d30421df
One of my first Kali Linux VMs… and I forgot the password
Instead of rebuilding it, I explored snapshot disk analysis and mounted the VDI to recover the data.
#Linux #digital-forensics #cybersecurity #ethical-hacking #virtualization
https://medium.com/@marduk.i.am/vm-snapshot-disk-recovery-657019478cbe
New CTF walkthrough for TryHackMe's RootMe. This is a fun one!
I just published RootMe (CTF Walkthrough) https://medium.com/p/rootme-ctf-walkthrough-efe69ef73510?source=social.tw
#TryHackMe #Cybersecurity #ReverseShell #CTF #PenetrationTesting
Been having fun with TryHackMe labs. Look for more write-ups to come.
#TryHackMe
#Cybersecurity
#EthicalHacking
#CTF
#PenetrationTesting
https://medium.com/@marduk.i.am/ctf-basic-pentesting-2d3d56aaeb52
Using #owasp tool Amass 5.0.0 for recon. Hope this helps!
https://medium.com/@marduk.i.am/amass-5-0-0-usage-for-recon-8041bc727480
#bugbountytips #bugbounty #CyberSecurity #resonnaissance #EthicalHacking
Looking for JavaScript files? Look no further!
https://medium.com/@marduk.i.am/recon-methodology-javascript-file-hunting-254127ecd211
