Jeremy
| Website | https://pentesterlab.com/ |
PentesterLab 
- 282 Followers
- 0 Following
- 10 Posts
We make learning web hacking and security easier. Online systems, code review, videos & courses that can be used to understand, test and exploit bugs!
Michael Garweg
Codebender_Cate 
bsidesrocSuper excited to announce that we have some fabulous new sponsors-in-kind! RIT CGI (@RITtigers), MetaCTF (@MetaCTF), Hac5 (@hak5), PentesterLab (@PentesterLab), and TCM Security (@TCMSecurity ) !! We couldn't run this conference without your generous assistance. THANK YOU!
One of the most common mistake in security audits, pentests or compliance:
Thinking checklists are the ultimate goals or the most detailed checks we need.
In reality, checklists are just the starting point, the bare minimum we should be doing.
With training budgets shrinking, ensure your team stays ahead of the curve with affordable, top-tier training from PentesterLab 📈💡
cycoslaveShout out to @PentesterLab for sending me my new favorite keychain!
Articles worth reading discovered last week:
# CVE-2021-43444 to 43449: Exploiting ONLYOFFICE Web Sockets for Unauthenticated Remote Code Execution
🗞 https://labs.nettitude.com/blog/exploiting-onlyoffice-web-sockets-for-unauthenticated-remote-code-execution/
# Technical challenges with file formats - Speaker Deck
🗞 https://speakerdeck.com/ange/technical-challenges-with-file-formats
# I Hope This Sticks: Analyzing ClipboardEvent Listeners for Stored XSS | Spaceraccoon's Blog
🗞 https://spaceraccoon.dev/analyzing-clipboardevent-listeners-stored-xss/
# GitHub - fransr/hot-jar-swapping-urlclassloader: Demo of the URLClassLoader JAR-swapping showing the ability to replace and exploit an already loaded JAR with inner classes
🗞 https://github.com/fransr/hot-jar-swapping-urlclassloader
MaxMnMl@PentesterLab Bootcamp is an awesome resource to prepare for my eWPT exam. 🙏
Web for pentester ✅
Web for pentester II ✅