PinnedServer-Side Template Injection (SSTI) — Blackbox perspectiveBefore I can explain what is SSTI, let’s first conceptualise Template Engine (also called Template System or Web Template System).Nov 5, 2024Nov 5, 2024
Enumeration via LDAP — Part 1As a basic principle, before we can leverage any protocol to enumerate, we need know how it works? how it is built? what does it do? and…May 11, 2022May 11, 2022