In this Exploit Chronicles post, we will examine a blind SQL injection vulnerability that opens the way to a command injection attack. However, before we…
Author: n1h1lu5
Exploit Chronicles: Json.NET Auto TypeNameHandling Deserialization Exploit
Posted in Exploit Chronicles
In this exploit chronicle post, we will cover a .NET deserialization attack vector that, from what I could see, is not as documented as others.…
Welcome to this new series of posts that I called Exploit Chronicles. I will be showcasing interesting exploits that I either thought about or have…
Building a Monitor from An Old Laptop
Posted in Electronics, and Projects
One day, your pristine laptop will be an old piece of hardware. Before you dispose of it, you may want to grab a few valuable…
On Becoming OSWE Certified
Posted in Certifications, Offensive Security, and Projects
Last year (2023) I successfully passed the OSWE exam and obtained the certification. In this post, I will talk about my experience with the exam…
The recommended way to do HTTP calls using C# is to use HttpClient. This class is disposable, meaning that it should be used inside a…
Building an 8-Bit CPU from Scratch – Part 1
Posted in Electronics, and Projects
Wait, Building a CPU? Some time ago, I listened to one of Scott Hanselman’s podcasts, hanselminutes, and he was interviewing Ben Eater. This man was…
On Becoming OSCP Certified
Posted in Certifications, Offensive Security, and Projects
Last year (in 2022), I successfully passed my OSCP exam. So yes, this will be yet another blog post about OSCP and the PEN-200 course…
Writing your own Interpreter from Scratch
Posted in Book Review, and Coding
I’ve always wanted to write my own programming language. However, I never found myself having the time to learn all the necessary concepts to take…
On Becoming GIAC-GWEB Certified
Posted in Application Security, Certifications, and Projects
The very first certification I ever got in my career is GIAC-GWEB, where GWEB stands for “GIAC Certified Web Application Defender”. You can see my…