0xInfection – Medium

Published in Nerd For Tech

·May 31, 2021

Pwning a Backend with a Backdoor

Development is a important task. But mindful secure development is much more important. In this quick blog post, I detail an unusual way in which I was able to escalate access to several production instances behind a properly secured network. How it started. It all started with me casually checking some traffic data…

Cybersecurity

6 min read

Jan 24, 2021

Utilizing CI/CDs to the Fullest for Fun and Profit

Hey folks, We all have heard of CI/CDs right? I was exploring GitHub Actions and what I found was the fact that it was an extremely underrated resource which is not quite widely used for general purposes by people. In this blog post, I aim to detail how people can…

Cybersecurity

9 min read

Utilizing CI/CDs to the Fullest for Fun and Profit

Aug 18, 2019

Fingerprinting WAF Rules with Timing Based Side Channel Attacks

Hi folks, Today in this post I am going to be detailing about my recent experiments with web application firewalls (WAFs) focusing on a specific type of side channel attacks, namely, timing. In my opinion, this field hasn’t been studied actively and the results can be more lethal than you’re…

Side Channel Attacks

12 min read