{"version":1,"pages":[{"id":"ODJZZ5dbS97r1BZweCbT","title":"Welcome!","pathname":"/blog","siteSpaceId":"sitesp_hpAId","emoji":"1f44b","description":"⚠️ Caution: This blog is mine alone. Everything posted here reflects my personal views only. Nothing I say represents my employer or any other organization I’m affiliated with. Don’t confuse the two."},{"id":"oxaFt3TsRhtAocDLWCtD","title":"Web Application Findings","pathname":"/blog/web-application-findings","siteSpaceId":"sitesp_hpAId","emoji":"1f41b","description":"Bug Bounty Hunting and Penetration Testing findings from public and private programs."},{"id":"IlDL2t52Y4LryWW9jPRW","title":"[CVE-2026-38450] Aetopia DAM Server-Side Template Injection","pathname":"/blog/web-application-findings/cve-2026-38450-aetopia-dam-server-side-template-injection","siteSpaceId":"sitesp_hpAId","description":"Technical information about the CVE-2026-38450 in Aetopia DAM application.","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"jLG2fOIx8XHG3LRmNXOM","title":"[CVE-2025-65239] USSD Gateway Broken Access Control - Logs","pathname":"/blog/web-application-findings/cve-2025-65239-ussd-gateway-broken-access-control-logs","siteSpaceId":"sitesp_hpAId","description":"https://www.cve.org/CVERecord?id=CVE-2025-65239","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"usHw3d9oFS94XaK3zqe9","title":"[CVE-2025-65238] USSD Gateway Broken Access Control - Sessions","pathname":"/blog/web-application-findings/cve-2025-65238-ussd-gateway-broken-access-control-sessions","siteSpaceId":"sitesp_hpAId","description":"https://www.cve.org/CVERecord?id=CVE-2025-65238","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"OQSnWbvFNbx1nyL42Zkr","title":"[CVE-2025-65237] USSD Gateway Reflected Cross-Site Scripting","pathname":"/blog/web-application-findings/cve-2025-65237-ussd-gateway-reflected-cross-site-scripting","siteSpaceId":"sitesp_hpAId","description":"https://www.cve.org/CVERecord?id=CVE-2025-65237","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"2CE7JzcQnKYGM8rbt1OT","title":"[CVE-2025-65236] USSD Gateway SQL Injection - Sessions","pathname":"/blog/web-application-findings/cve-2025-65236-ussd-gateway-sql-injection-sessions","siteSpaceId":"sitesp_hpAId","description":"https://www.cve.org/CVERecord?id=CVE-2025-65236","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"UI0W5qCnBIFPdg2rjDZd","title":"[CVE-2025-65235] USSD GW SQL Injection - SubUsers","pathname":"/blog/web-application-findings/cve-2025-65235-ussd-gw-sql-injection-subusers","siteSpaceId":"sitesp_hpAId","description":"https://www.cve.org/CVERecord?id=CVE-2025-65235","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"7OyqmcDoJCD9s9wwovfI","title":"[CVE-2021-34786] Cisco BroadWorks - Delete Admin Account","pathname":"/blog/web-application-findings/cve-2021-34786-cisco-broadworks-delete-admin-account","siteSpaceId":"sitesp_hpAId","description":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-broadworks-dJ9JT67N","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"b7uqHfHpeqygKyEKgLtb","title":"[CVE-2021–34785] Cisco BroadWorks - Privileged Escalation","pathname":"/blog/web-application-findings/cve-2021-34785-cisco-broadworks-privileged-escalation","siteSpaceId":"sitesp_hpAId","description":"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-broadworks-dJ9JT67N","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"iBzRDnjuOn47swzvP1La","title":"Authentication bypass using empty parameters.","pathname":"/blog/web-application-findings/authentication-bypass-using-empty-parameters.","siteSpaceId":"sitesp_hpAId","description":"Exploiting Authentication Bypass vulnerability with a tricky technique.","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"Y5j56rQYTIE5wiDC3J6Y","title":"IDOR at Login function leads to leak user’s PII data","pathname":"/blog/web-application-findings/idor-at-login-function-leads-to-leak-users-pii-data","siteSpaceId":"sitesp_hpAId","description":"Vulnerable Login function leads to leaking PII data for all registered users.","breadcrumbs":[{"label":"Web Application Findings","emoji":"1f41b"}]},{"id":"AjlQrEFrGw1dXHDn1MK6","title":"Recon automation and more","pathname":"/blog/recon-automation-and-more","siteSpaceId":"sitesp_hpAId","emoji":"2139","description":"Recon/Information Gathering tips and tricks"},{"id":"d3WTU1m8VGcJTd75OnNy","title":"RoboWrecker AI tool","pathname":"/blog/recon-automation-and-more/robowrecker-ai-tool","siteSpaceId":"sitesp_hpAId","description":"The post contains the documentations for the RoboWrecker tool that created by Eslam Akl and Hamed Ashraf.","breadcrumbs":[{"label":"Recon automation and more","emoji":"2139"}]},{"id":"GYooIgKHcJDmLHpVbLDX","title":"How to write a simple script to automate finding bugs","pathname":"/blog/recon-automation-and-more/how-to-write-a-simple-script-to-automate-finding-bugs","siteSpaceId":"sitesp_hpAId","description":"Simple way to write python script to automate finding bugs","breadcrumbs":[{"label":"Recon automation and more","emoji":"2139"}]},{"id":"9FKhoYDHVyUMixbO7AKN","title":"Simple Recon Methodology","pathname":"/blog/recon-automation-and-more/simple-recon-methodology","siteSpaceId":"sitesp_hpAId","description":"Simple and effective recon methodology for beginners.","breadcrumbs":[{"label":"Recon automation and more","emoji":"2139"}]},{"id":"F9hxoDTqtvS7NZOKCRCS","title":"Hack The Box Machines","pathname":"/blog/hack-the-box-machines","siteSpaceId":"sitesp_hpAId","emoji":"1f510","description":""},{"id":"Htn5pf0jV2e49VAcQPU6","title":"Feline Walkthrough","pathname":"/blog/hack-the-box-machines/feline-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"G20alI58TDIkYVRcUvQT","title":"Reel2 Walkthrough","pathname":"/blog/hack-the-box-machines/reel2-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"O271LuIkTL3iWRvgD3nP","title":"Active Walkthrough","pathname":"/blog/hack-the-box-machines/active-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"Y7oeYgAbLcOmex6XnJdR","title":"PopCorn Walkthrough","pathname":"/blog/hack-the-box-machines/popcorn-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"y26DncSFaOsKhXmQLVrR","title":"Jewel Walkthrough","pathname":"/blog/hack-the-box-machines/jewel-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"g5aXMqQypYqsCHr2HdIB","title":"Passage Walkthrough","pathname":"/blog/hack-the-box-machines/passage-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"65a4BjvMvMubOz5W4OFv","title":"Time Walkthrough","pathname":"/blog/hack-the-box-machines/time-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"qr9ylcLj77fpz72MlQws","title":"Devel Walkthrough","pathname":"/blog/hack-the-box-machines/devel-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"RXhtgaKe6ksOO1wPkgNd","title":"Lame Walkthrough","pathname":"/blog/hack-the-box-machines/lame-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"gIqykgwhqhbMtGtUZQ7E","title":"Beep Walkthrough","pathname":"/blog/hack-the-box-machines/beep-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"KxohSXCWNWtBvR0qqIM8","title":"Blue Walkthrough","pathname":"/blog/hack-the-box-machines/blue-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"VRTy8u2tqBRIKvGnID5N","title":"Jerry Walkthrough","pathname":"/blog/hack-the-box-machines/jerry-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"otWi2ez7SG0XZsv88GBC","title":"Optimum Walkthrough","pathname":"/blog/hack-the-box-machines/optimum-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"UJdjWdgjnEZrqikd9Bj3","title":"Grandpa Walkthrough","pathname":"/blog/hack-the-box-machines/grandpa-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"BFyVGt3x6VVIGTTUyNOZ","title":"Legacy Walkthrough","pathname":"/blog/hack-the-box-machines/legacy-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"kTb2ssgi9K5dUZ8rz1wd","title":"Mirai Walkthrough","pathname":"/blog/hack-the-box-machines/mirai-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"IIDgSFY6IfIJJqsvcngj","title":"Valentine Walkthrough","pathname":"/blog/hack-the-box-machines/valentine-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"mOOqVOUdAGuJZ2pmSleb","title":"Shocker Walkthrough","pathname":"/blog/hack-the-box-machines/shocker-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"si05pia6CyVEJrt2eK2E","title":"Netmon Walkthrough","pathname":"/blog/hack-the-box-machines/netmon-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"TijoR4kPIlrp0p2NFiCf","title":"Bank Walkthrough","pathname":"/blog/hack-the-box-machines/bank-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"OSfgwuZD1BWgXsu6d5qf","title":"Granny Walkthrough","pathname":"/blog/hack-the-box-machines/granny-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"qC8tyYgZqwIzqbvNVxoC","title":"Tabby Walkthrough","pathname":"/blog/hack-the-box-machines/tabby-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"Go4T0M0bCSMFNX2aHFIx","title":"Access Walkthrough","pathname":"/blog/hack-the-box-machines/access-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"opRKJOf9awvGtts2TXD2","title":"Swagshop Walkthrough","pathname":"/blog/hack-the-box-machines/swagshop-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"FLVjfNhZi4X0bkxb0Og9","title":"OpenAdmin Walkthrough","pathname":"/blog/hack-the-box-machines/openadmin-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"kGo9MZz8Vf2SYOtmQnK6","title":"Remote Walkthrough","pathname":"/blog/hack-the-box-machines/remote-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"IF5zpvfxfzIZk2SDqdpP","title":"Sauna Walkthrough","pathname":"/blog/hack-the-box-machines/sauna-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"Tded5O9eUGLbYvSS5ehz","title":"FriendZone Walkthrough","pathname":"/blog/hack-the-box-machines/friendzone-walkthrough","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"PPAMvCdxQo9yRruSr1LC","title":"Hack The Box — Networked","pathname":"/blog/hack-the-box-machines/hack-the-box-networked","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"tWWdZc576mqMeXwWm4Hg","title":"Hack The Box — Forest","pathname":"/blog/hack-the-box-machines/hack-the-box-forest","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"xQxvINiRegoeiZvfr0Fo","title":"Hack The Box — WriteUP","pathname":"/blog/hack-the-box-machines/hack-the-box-writeup","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"4kbMP2b2KYg56BAzMG4c","title":"Hack The Box — Academy","pathname":"/blog/hack-the-box-machines/hack-the-box-academy","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"OfFmioxsa68fqUCgRvI2","title":"Hack The Box — Luanne","pathname":"/blog/hack-the-box-machines/hack-the-box-luanne","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"Hack The Box Machines","emoji":"1f510"}]},{"id":"4BskROv28wOnb0rihzcK","title":"Certificates Reviews","pathname":"/blog/certificates-reviews","siteSpaceId":"sitesp_hpAId","icon":"award-simple","description":""},{"id":"bE3PfLmp1zfPw7Qvvvc1","title":"HTB Certified Offensive AI Expert - COAE","pathname":"/blog/certificates-reviews/htb-certified-offensive-ai-expert-coae","siteSpaceId":"sitesp_hpAId","description":"Quick and honest review of COAE without wasting your time :)","breadcrumbs":[{"label":"Certificates Reviews","icon":"award-simple"}]},{"id":"k3BHb6KxhgKqMfWZMcdY","title":"Cloud Security","pathname":"/blog/cloud-security","siteSpaceId":"sitesp_hpAId","emoji":"2601","description":"If you secured your cloud enviroment, it means you protected your backbone."},{"id":"7L71fb9Z1oqRAk2tgoYo","title":"[Azure] Real Example to know different types of app concepts in Azure","pathname":"/blog/cloud-security/azure-real-example-to-know-different-types-of-app-concepts-in-azure","siteSpaceId":"sitesp_hpAId","description":"We will discuss the differences between App Registration, Service Principle, App Service, and Function app.","breadcrumbs":[{"label":"Cloud Security","emoji":"2601"}]},{"id":"1GwLQUEMSfZl4sK82Avx","title":"[Azure] What To Do If?","pathname":"/blog/cloud-security/azure-what-to-do-if","siteSpaceId":"sitesp_hpAId","description":"\"What To Do If\" is a blog that will be updated continuously to contain valuable information about Azure Cloud resources exploit.","breadcrumbs":[{"label":"Cloud Security","emoji":"2601"}]},{"id":"xxPAOHEC4m6mpSHNmqqV","title":"CTF Challenges","pathname":"/blog/ctf-challenges","siteSpaceId":"sitesp_hpAId","emoji":"1f3f4-2620","description":""},{"id":"sOTvF80nTBOCv1OEPtcj","title":"CTF CyberTalents  — Bypass the world Writeup","pathname":"/blog/ctf-challenges/ctf-cybertalents-bypass-the-world-writeup","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"weWkp2qqObft24rALklw","title":"CTF CyberTalents — Admin Gate First","pathname":"/blog/ctf-challenges/ctf-cybertalents-admin-gate-first","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"mty0rc6JniaRjpVHB8wm","title":"CTF CyberTalents — Inbox","pathname":"/blog/ctf-challenges/ctf-cybertalents-inbox","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"MNj2mLWrJo78oAmZGE4C","title":"CTFlearn — Inj3ction Time","pathname":"/blog/ctf-challenges/ctflearn-inj3ction-time","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"k4Ux3udQsXdaiGBqLq9A","title":"CTF ringzer0ctf — Challenge Access List","pathname":"/blog/ctf-challenges/ctf-ringzer0ctf-challenge-access-list","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"njRHVEueWYkcHcSPZXh5","title":"CTF ringzer0ctf — Login portal 2","pathname":"/blog/ctf-challenges/ctf-ringzer0ctf-login-portal-2","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"9U0r7npkuhYVJhhe1nLT","title":"CTF ringzer0ctf — SQLi challenges — part 1","pathname":"/blog/ctf-challenges/ctf-ringzer0ctf-sqli-challenges-part-1","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"bSaQQ4W9cUuzPDhdKQBg","title":"CTF ringZer0ctf — Login form","pathname":"/blog/ctf-challenges/ctf-ringzer0ctf-login-form","siteSpaceId":"sitesp_hpAId","description":"","breadcrumbs":[{"label":"CTF Challenges","emoji":"1f3f4-2620"}]},{"id":"KfNN3IWAg3voYQ3hC5sb","title":"Red Teaming Tips & Tricks","pathname":"/blog/red-teaming-tips-and-tricks","siteSpaceId":"sitesp_hpAId","emoji":"1f534","description":"Welcome to the most important section \"Red Teaming Tips and tricks\""},{"id":"zWqOPXp6boMnsBECJBLz","title":"MOTW Defensive and Bypass techniques","pathname":"/blog/red-teaming-tips-and-tricks/motw-defensive-and-bypass-techniques","siteSpaceId":"sitesp_hpAId","description":"Mark of the Web \"MOTW\" defensive and bypass techniques.","breadcrumbs":[{"label":"Red Teaming Tips & Tricks","emoji":"1f534"}]}]}