Skip to the content
Hacktive Security Blog
  • Pin Posts
  • Home
  • 2018

2018

0
0
Daikin Emura Series – Arbitrary Remote Control via DNS Rebinding
Internet of Things

Daikin Emura Series – Arbitrary Remote Control via DNS Rebinding

Cristian Giustini
December 14, 2018July 15, 2021
There is a lot of hype around DNS rebinding vulnerability and vulnerable IoT devices, including home cameras, air conditioners or climate control devices; this flaw...
Read More
0
0
Building reversing skills, crackme level 6 [write-up]
Reverse Engineering

Building reversing skills, crackme level 6 [write-up]

Alessandro Groppo
July 23, 2018June 21, 2021
I don't usually play CTFs, but this time i wanted to improve my radare2 and reversing skills.All crackme challanges can be found here.Levels from 1 to...
Read More
0
0
Responsible disclosure – Reflected XSS on hireon.amazon.com
Application Security

Responsible disclosure – Reflected XSS on hireon.amazon.com

o___o
April 13, 2018June 20, 2021
On March 13th, by using dnsrecon (https://github.com/darkoperator/dnsrecon) and a huge wordlist, I came across with an Amazon domain (hireon.amazon.com) with a Reflected XSS. Usually I...
Read More
0
0
Facebook chat / dashboard content injection
Application Security

Facebook chat / dashboard content injection

Cristian Giustini
January 3, 2018July 15, 2021
I often wondered how link generation functionality is implemented by major social network applications and, more specifically, the preview generation. Some time ago a friend...
Read More

Recent Post

🇮🇹 Conosciamo Enrico Ingenito – Sales Manager

Hacking the Dutch government

CVE-2022-2602: DirtyCred File Exploitation applied on an io_uring UAF

Lock Picking – Part 1

How an Akamai misconfiguration earned us USD 46.000

Top Category

Application Security

Mobile

Exploitation

  • Pin Posts
Copyright © 2023 Hacktive Security Blog. All rights reserved.
Theme: Masonry Grid By Themeinwp. Powered by WordPress.
To the Top ↑ Up ↑