PinnedPublished inTanzil RehmanServer-Side Template Injection (SSTI) — Blackbox perspectiveBefore I can explain what is SSTI, let’s first conceptualise Template Engine (also called Template System or Web Template System).Nov 5, 2024Nov 5, 2024
Published inTanzil RehmanEnumeration via LDAP — Part 1As a basic principle, before we can leverage any protocol to enumerate, we need know how it works? how it is built? what does it do? and…May 11, 2022May 11, 2022
Published inTanzil RehmanPopcorn | HTB | OSCPPart of TJ Null OSCP-like Box SeriesNov 27, 2021Nov 27, 2021
Published inTanzil RehmanSolidstate | HTB | OSCPPart of TJ Null OSCP-like Box SeriesNov 26, 2021Nov 26, 2021
Published inTanzil RehmanActive | HTB | OSCPPart of TJ Null OSCP-like Box SeriesNov 24, 2021Nov 24, 2021
Published inTanzil RehmanFriendzone | HTB | OSCP | Box $Part of TJ Null OSCP-like Box SeriesNov 5, 2021Nov 5, 2021
Published inTanzil RehmanSense | HTB | OSCP | BoxPart of TJ Null OSCP-like Box SeriesNov 2, 2021Nov 2, 2021
Published inTanzil RehmanTraverxec | HTB| OSCP | Box $CVE | GTFOBIN | PAGER | SUDONov 1, 2021Nov 1, 2021