René's URL Explorer Experiment


Title: GitHub - scriptkkiddie/learn365: This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

Open Graph Title: GitHub - scriptkkiddie/learn365: This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

X Title: GitHub - scriptkkiddie/learn365: This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection

Description: This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection - scriptkkiddie/learn365

Open Graph Description: This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection - scriptkkiddie/learn365

X Description: This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection - scriptkkiddie/learn365

Opengraph URL: https://github.com/scriptkkiddie/learn365

X: @github

direct link

Domain: patch-diff.githubusercontent.com

route-pattern/:user_id/:repository
route-controllerfiles
route-actiondisambiguate
fetch-noncev2:3f496f77-9696-bd40-9910-e8088b63eaab
current-catalog-service-hashf3abb0cc802f3d7b95fc8762b94bdcb13bf39634c40c357301c4aa1d67a256fb
request-idD014:F4C68:2CEF45:37F31F:697F5870
html-safe-nonce9bcea485acf89bdc9ede12bc227631c17db2e12233d4acfd7790e136b120191c
visitor-payloadeyJyZWZlcnJlciI6IiIsInJlcXVlc3RfaWQiOiJEMDE0OkY0QzY4OjJDRUY0NTozN0YzMUY6Njk3RjU4NzAiLCJ2aXNpdG9yX2lkIjoiNzYwNTQ2OTY5OTQ0NjM2NDI3MiIsInJlZ2lvbl9lZGdlIjoiaWFkIiwicmVnaW9uX3JlbmRlciI6ImlhZCJ9
visitor-hmac518e68fb5d86ccf979d46507b254cdb4432fd754f81cb4472d80c0f7b2cbc1fe
hovercard-subject-tagrepository:348774934
github-keyboard-shortcutsrepository,copilot
google-site-verificationApib7-x98H0j5cPqHWwSMm6dNU4GmODRoqxLiDzdx9I
octolytics-urlhttps://collector.github.com/github/collect
analytics-location//
fb:app_id1401488693436528
apple-itunes-appapp-id=1477376905, app-argument=https://github.com/scriptkkiddie/learn365
twitter:imagehttps://opengraph.githubassets.com/f78d7a7874177f817c7b5a4d71454fcbcdaf2e8c3c744f0d7ba37f3a894131f2/scriptkkiddie/learn365
twitter:cardsummary_large_image
og:imagehttps://opengraph.githubassets.com/f78d7a7874177f817c7b5a4d71454fcbcdaf2e8c3c744f0d7ba37f3a894131f2/scriptkkiddie/learn365
og:image:altThis repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection - scriptkkiddie/learn365
og:image:width1200
og:image:height600
og:site_nameGitHub
og:typeobject
hostnamegithub.com
expected-hostnamegithub.com
None60279d4097367e16897439d16d6bbe4180663db828c666eeed2656988ffe59f6
turbo-cache-controlno-preview
go-importgithub.com/scriptkkiddie/learn365 git https://github.com/scriptkkiddie/learn365.git
octolytics-dimension-user_id34165084
octolytics-dimension-user_loginscriptkkiddie
octolytics-dimension-repository_id348774934
octolytics-dimension-repository_nwoscriptkkiddie/learn365
octolytics-dimension-repository_publictrue
octolytics-dimension-repository_is_forktrue
octolytics-dimension-repository_parent_id326033603
octolytics-dimension-repository_parent_nwoharsh-bothra/learn365
octolytics-dimension-repository_network_root_id326033603
octolytics-dimension-repository_network_root_nwoharsh-bothra/learn365
turbo-body-classeslogged-out env-production page-responsive
disable-turbofalse
browser-stats-urlhttps://api.github.com/_private/browser/stats
browser-errors-urlhttps://api.github.com/_private/browser/errors
release7c85641c598ad130c74f7bcc27f58575cac69551
ui-targetfull
theme-color#1e2327
color-schemelight dark

Links:

Skip to contenthttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365#start-of-content
https://patch-diff.githubusercontent.com/
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fscriptkkiddie%2Flearn365
GitHub CopilotWrite better code with AIhttps://github.com/features/copilot
GitHub SparkBuild and deploy intelligent appshttps://github.com/features/spark
GitHub ModelsManage and compare promptshttps://github.com/features/models
MCP RegistryNewIntegrate external toolshttps://github.com/mcp
ActionsAutomate any workflowhttps://github.com/features/actions
CodespacesInstant dev environmentshttps://github.com/features/codespaces
IssuesPlan and track workhttps://github.com/features/issues
Code ReviewManage code changeshttps://github.com/features/code-review
GitHub Advanced SecurityFind and fix vulnerabilitieshttps://github.com/security/advanced-security
Code securitySecure your code as you buildhttps://github.com/security/advanced-security/code-security
Secret protectionStop leaks before they starthttps://github.com/security/advanced-security/secret-protection
Why GitHubhttps://github.com/why-github
Documentationhttps://docs.github.com
Bloghttps://github.blog
Changeloghttps://github.blog/changelog
Marketplacehttps://github.com/marketplace
View all featureshttps://github.com/features
Enterpriseshttps://github.com/enterprise
Small and medium teamshttps://github.com/team
Startupshttps://github.com/enterprise/startups
Nonprofitshttps://github.com/solutions/industry/nonprofits
App Modernizationhttps://github.com/solutions/use-case/app-modernization
DevSecOpshttps://github.com/solutions/use-case/devsecops
DevOpshttps://github.com/solutions/use-case/devops
CI/CDhttps://github.com/solutions/use-case/ci-cd
View all use caseshttps://github.com/solutions/use-case
Healthcarehttps://github.com/solutions/industry/healthcare
Financial serviceshttps://github.com/solutions/industry/financial-services
Manufacturinghttps://github.com/solutions/industry/manufacturing
Governmenthttps://github.com/solutions/industry/government
View all industrieshttps://github.com/solutions/industry
View all solutionshttps://github.com/solutions
AIhttps://github.com/resources/articles?topic=ai
Software Developmenthttps://github.com/resources/articles?topic=software-development
DevOpshttps://github.com/resources/articles?topic=devops
Securityhttps://github.com/resources/articles?topic=security
View all topicshttps://github.com/resources/articles
Customer storieshttps://github.com/customer-stories
Events & webinarshttps://github.com/resources/events
Ebooks & reportshttps://github.com/resources/whitepapers
Business insightshttps://github.com/solutions/executive-insights
GitHub Skillshttps://skills.github.com
Documentationhttps://docs.github.com
Customer supporthttps://support.github.com
Community forumhttps://github.com/orgs/community/discussions
Trust centerhttps://github.com/trust-center
Partnershttps://github.com/partners
GitHub SponsorsFund open source developershttps://github.com/sponsors
Security Labhttps://securitylab.github.com
Maintainer Communityhttps://maintainers.github.com
Acceleratorhttps://github.com/accelerator
Archive Programhttps://archiveprogram.github.com
Topicshttps://github.com/topics
Trendinghttps://github.com/trending
Collectionshttps://github.com/collections
Enterprise platformAI-powered developer platformhttps://github.com/enterprise
GitHub Advanced SecurityEnterprise-grade security featureshttps://github.com/security/advanced-security
Copilot for BusinessEnterprise-grade AI featureshttps://github.com/features/copilot/copilot-business
Premium SupportEnterprise-grade 24/7 supporthttps://github.com/premium-support
Pricinghttps://github.com/pricing
Search syntax tipshttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
documentationhttps://docs.github.com/search-github/github-code-search/understanding-github-code-search-syntax
Sign in https://patch-diff.githubusercontent.com/login?return_to=https%3A%2F%2Fgithub.com%2Fscriptkkiddie%2Flearn365
Sign up https://patch-diff.githubusercontent.com/signup?ref_cta=Sign+up&ref_loc=header+logged+out&ref_page=%2F%3Cuser-name%3E%2F%3Crepo-name%3E&source=header-repo&source_repo=scriptkkiddie%2Flearn365
Reloadhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365
Reloadhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365
Reloadhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365
scriptkkiddie https://patch-diff.githubusercontent.com/scriptkkiddie
learn365https://patch-diff.githubusercontent.com/scriptkkiddie/learn365
harsh-bothra/learn365https://patch-diff.githubusercontent.com/harsh-bothra/learn365
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fscriptkkiddie%2Flearn365
Fork 1 https://patch-diff.githubusercontent.com/login?return_to=%2Fscriptkkiddie%2Flearn365
Star 6 https://patch-diff.githubusercontent.com/login?return_to=%2Fscriptkkiddie%2Flearn365
6 stars https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/stargazers
424 forks https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/forks
Branches https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/branches
Tags https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tags
Activity https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/activity
Star https://patch-diff.githubusercontent.com/login?return_to=%2Fscriptkkiddie%2Flearn365
Notifications https://patch-diff.githubusercontent.com/login?return_to=%2Fscriptkkiddie%2Flearn365
Code https://patch-diff.githubusercontent.com/scriptkkiddie/learn365
Pull requests 0 https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/pulls
Actions https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/actions
Projects 0 https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/projects
Security 0 https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/security
Insights https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/pulse
Code https://patch-diff.githubusercontent.com/scriptkkiddie/learn365
Pull requests https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/pulls
Actions https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/actions
Projects https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/projects
Security https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/security
Insights https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/pulse
Brancheshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/branches
Tagshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tags
https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/branches
https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tags
200 Commitshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/commits/main/
https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/commits/main/
MindMapshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tree/main/MindMaps
MindMapshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tree/main/MindMaps
dayshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tree/main/days
dayshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/tree/main/days
README.mdhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/README.md
README.mdhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/README.md
suggestions.mdhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/suggestions.md
suggestions.mdhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/suggestions.md
READMEhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365
https://patch-diff.githubusercontent.com/scriptkkiddie/learn365#learn365
Harsh Bothrahttps://twitter.com/harshbothra_
Mehedi Hasan Remonhttps://twitter.com/remonsec
2FA Bypass Techniqueshttps://t.co/HPi5ZP2SKG?amp=1
Scope Based Reconhttps://www.xmind.net/m/hKKexj/
Cookie Based Authentication Vulnerabilitieshttp://www.xmind.net/m/2FwJ7D
Unauthenticated JIRA CVEshttps://raw.githubusercontent.com/harsh-bothra/learn365/main/MindMaps/JIRA_CVEs.png
Android Application Penetration Testing Checklisthttps://www.xmind.net/m/GkgaYH/
2FA Bypass Techniqueshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day1.md
Regular Expression Denial Of Servicehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day2.md
SAML Vulnerabilitieshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day3.md
Unauthenticated & Exploitable JIRA Vulnerabilities https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day4.md
Client-Side Template Injection(CSTI)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day5.md
Cross-Site Leaks (XS-Leaks)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day6.md
Cross-Site Script Includes (XSSI)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day7.md
JSON Padding Attackshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day8.md
JSON Attackshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day9.md
Abusing Hop-by-Hop Headershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day10.md
Cache Poisoned Denial of Service (CPDos)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day11.md
Unicode Normalizationhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day12.md
WebSocket Vulns (Part-1)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day13.md
WebSocket Vulns (Part-2)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day14.md
WebSocket Vulns (Part-3)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day15.md
Web Cache Deception Attackhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day16.md
Session Puzzling Attackhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day17.md
Mass Assignment Attackhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day18.md
HTTP Parameter Pollutionhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day19.md
GraphQL Series (Part-1)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day20.md
GraphQL Vulnerabilities (Part-2)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day21.md
GraphQL WrapUp (Part-3)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day22.md
Password Reset Token Issueshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day23.md
My previous workshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day24.md
Salesforce Security Misconfiguration (Part-1)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day25.md
Salesforce Security Misconfiguration (Part-2))https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day26.md
Salesforce Configuration Review (Wrap)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day27.md
Common Business Logic Issues: Part-1https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day28.md
Common Business Logic Issues (Part-2)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day29.md
Common Business Logic Issues (Wrap)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day30.md
Captcha Bypass Techniqueshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day31.md
Pentesting Kibana Servicehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day32.md
Pentesting Docker Registryhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day33.md
HTML Scriptless Attacks / Dangling Markup Attacks (Part - 1)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day34.md
HTML Scriptless Attacks / Dangling Markup Attacks (Wrap)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day35.md
Pentesting Rsync Servicehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day36.md
CRLF Injectionhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day37.md
Pentesting FTP Servicehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day38.md
OpenID Connect Implementation Issueshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day39.md
Cookie Based Authentication Vulnerabilitieshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day40.md
Cobalt Vulnerability Wiki - Resourcehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day41.md
Race Conditionshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day42.md
SMTP Open Relay Attackhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day43.md
Pentesting BACNethttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day44.md
API Security Tipshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day45.md
Pentesting SSH - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day46.md
CORS Misconfigurationhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day47.md
Incomplete Trailing Escape Pattern Issuehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day48.md
Pivoting & Exploitation in Docker Environments - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day49.md
Detect Complex Code Patterns using Semantic grep - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day50.md
Student Roadmap to Become a Pentester - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day51.md
Hacking How-To Series - Playlisthttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day52.md
JS Prototype Pollutionhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day53.md
JSON Deserialization Attackshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day54.md
Android App Dynamic Analysis using Househttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day55.md
Testing IIS Servershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day56.md
Secure Code Review - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day57.md
JSON Interoperability Vulnerabilities - Research Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day58.md
HTTP Desync Attacks - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day59.md
XSLT Injectionhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day60.md
Bypassing AWS Policies - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day61.md
Source Code Review Guidelines - Resourcehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day62.md
All of the Threats: Intelligence, Modelling and Hunting - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day63.md
Hidden Property Abuse (HPA) attack in Node.js - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day64.md
HTTP Request Smuggling in 2020 - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day65.md
Dependecy Confusion Attack - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day66.md
Format String Vulnerabilities - Webinarhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day67.md
Mobile Application Dynamic Analysis - Webinarhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day68.md
Insecure Deserialization - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day69.md
Web Cache Entanglement - Talk + Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day70.md
OWASP AMASS - Bootcamphttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day71.md
Offensive Javascript Techniques for Red Teamershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day72.md
Basic CMD for Pentesters - Cheatsheethttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day73.md
Investigating and Defending Office 365 - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day74.md
WinjaCTF 2021 Solutions - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day75.md
Kubernetes Security: Attacking and Defending K8s Clusters - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day76.md
AWS Cloud Security - Resourceshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day77.md
WAF Evasion Techniques - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day78.md
File Inclusion - All-in-Onehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day79.md
DockerENT Insights - Tool Demo Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day80.md
ImageMagick - Shell injection via PDF password : Research Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day81.md
Offensive GraphQL API Pentesting - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day82.md
Bug Bounties with Bash - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day83.md
Chrome Extensions Code Review - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day84.md
Server-Side Template Injection - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day85.md
Exploiting GraphQL - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day86.md
Exploiting Email Systems - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day87.md
Hacking with DevTools - Tutorialhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day88.md
Common Android Application Vulnerabilities - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day89.md
SAML XML Injection - Research Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day90.md
Finding Access Control & Authorization Issues with Burp - Blogshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day91.md
OAuth 2.0 Misimplementation, Vulnerabilities, and Best Practices - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day92.md
JWT Attacks - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day93.md
Random Readingshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day94_102.md
Attacking Ruby on Rails Applications - Whitepaperhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day103.md
Pentesting a Chrome Extension: Real Life Case Study - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day104.md
XXE Simplified - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day105.md
Web Hacking Pro Tips #9 with @zseano - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day106.md
JS Prototype Pollution - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day107.md
XSS via GraphQL Endpoint - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day108.md
WS-2016-7107: CSRF tokens in Spring and the BREACH attack - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day109.md
AWS SSRF Metadata Leakage - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day110.md
Burp Suite Extension Development - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day111.md
Random Readingshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day112_115.md
Hacking OAuth Apps Pt-1 - Tutorialhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day116.md
Portable Data exFiltration: XSS for PDFs - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day117.md
PoC code and a case study on Task Hijacking in Android explaining how and why it works. (aka StrandHogg) - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day118.md
OAuth - Flawed CSRF Protection - Tutorialhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day119.md
Hacking Electron Apps with Electronegativity - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day120.md
Awesome ElectronJS Hacking Resourceshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day121.md
Pentesting Blockchain Solutions - Tutorialhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day122.md
Random Readingshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day123_124.md
Oversized XML Attack - Wikihttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day125.md
XML Complexity Attack in Soap Header - Wikihttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day126.md
Web Service Attacks [Remaining] - Wikihttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day127.md
Domain Hijacking Via Logic Error - Gandi And Route 53 Vulnerability - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day128.md
Automating Recon with Axiom - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day129.md
Testing Extensions in Chromium Browsers - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day130.md
iOS Pentesting Series Pt. - 1 - Tutorialhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day131.md
DNS Based Out of Band Blind SQL injection in Oracle — Dumping data - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day132.md
GitDorker Talk - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day133.md
Mobisec 2020 Slides - Slides & Videoshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day134.md
Web App Pentesting in Angular Context - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day135.md
RCE in Homebrew - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day136.md
WordPress Plugin Security Testing Cheat Sheet - Wikihttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day137.md
JavaScript prototype pollution: practice of finding and exploitation - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day138.md
HowTo: intercept mutually-authenticated TLS communications of a Java thick client - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day139.md
UBERNETES NAMESPACES ISOLATION - WHAT IT IS, WHAT IT ISN'T, LIFE, UNIVERSE AND EVERYTHING - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day140.md
Frag Attacks - Wikihttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day141.md
Free Automated Recon Using GH Actions - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day142.md
DAY[0] Episode 66 - BlackHat USA, Pre-Auth RCEs, and JSON Smuggling - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day143.md
Bug hunter adventures - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day144.md
Static Analysis of Client-Side JS Code - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day145.md
Method Confusion In Go SSTIs Lead To File Read And RCE - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day146.md
Finding and Exploiting Unintended Functionality in Main Web App APIs - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day147.md
SecuriTEA & Crumpets - Episode 6 - Gareth Heyes - Hackvertor - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day148.md
GraphQL CSRF - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day149.md
Deep dive into ART(Android Runtime) for dynamic binary analysis - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day150.md
13 Nagios Vulnerabilities - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day151.md
Frida Scripting Guide - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day152.md
Android Exported Activities and how to exploit them - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day153.md
XXE-scape through the front door: circumventing the firewall with HTTP request smuggling - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day154.md
Turning Blind RCE into Good RCE via DNS Exfiltration using Collabfiltrator - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day155.md
XSS in AWS Console - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day156.md
Adventures into HTTP2 and HTTP3 - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day157.md
AppCache's forgotten tales - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day158.md
CVE-2021-33564 Argument Injection in Ruby Dragonfly - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day159.md
DevSecOps 100 - Introductory Couse [Free] - Coursehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day160.md
Unexpected Execution: Wild Ways Code Execution can Occur in Python - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day161.md
Retrieving AWS security credentials from the AWS console - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day162.md
Object Injection to SQL Injection & NoSql Injection Cheatsheet - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day163.md
HTTP Parameter Pollution - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day164.md
XXE Workshop - Labshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day165.md
How to Analyze Code for Vulnerabilities - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day166.md
Testing 2FA - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day167.md
Your E-Mail Validation Logic is Wrong - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day168.md
Active Scanning Techniques - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day169.md
Bypassing 2FA using OpenId Misconfiguration - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day170.md
Security Shorts - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day171.md
The JavaScript Bridge in Modern Desktop Applications - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day172.md
Advanced Web Application Penetration Testing JWT Security Issues - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day173.md
Quick Analysis for the SSID Format String Bug - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day174.md
Live GitLab Ask a Hacker with Bug Bounty Hunter (vakzz) William Bowling (Public) - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day175.md
iOS App Testing Through Burp on Corellium - bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day176.md
Blind XSS: setup your self-hosted XSS Hunter with the PwnMachine - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day177.md
Attacking GraphQL's Autocorrect - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day178.md
Apex Security Whitepaper - Paper + Labshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day179.md
Django SSTI - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day180.md
Pen-Testing Salesforce SAAS Application - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day181.md
How to solve an XSS challenge from Intigriti in under 60 minutes - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day182.md
How to get the max out of an IDOR? - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day183.md
Pre-auth RCE in ForgeRock OpenAM (CVE-2021-35464) - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day184.md
Some ways to find more IDOR - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day185.md
A supply-chain breach: Taking over an Atlassian account - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day186.md
alert() is dead, long live print() - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day187.md
Hacker Heroes #3 - @TomNomNom (Interview) - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day188.md
SSRF in ColdFusion/CFML Tags and Functions - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day189.md
$25,000 Facebook postMessage account takeover vulnerability - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day190.md
Pentester Diaries Ep6: The Importance of Report Writing - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day191.md
Introduction to Web Cache Poisoning - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day192.md
Intercepting Flutter iOS Application - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day193.md
Credential stuffing in Bug bounty hunting - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day194.md
What is a Browser Security Sandbox?! (Learn to Hack Firefox) - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day195.md
WILSON Cloud Respwnder - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day196.md
$20,000 RCE in GitLab via 0day in exiftool metadata processing library CVE-2021-22204 - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day197.md
Padding Oracle Attacks - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day198.md
Demystifying the state of kubernetes cluster security - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day199.md
Two One-liners for Quick ColdFusion Static Analysis Security Testing - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day200.md
So many different techniques to learn here! [CTF walkthrough] - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day201.md
UDP Technology IP Camera vulnerabilities - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day202.md
Exploiting the Sudo Baron Samedit vulnerability (CVE-2021-3156) on VMWare vCenter Server 7.0 - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day203.md
Reflected XSS Through Insecure Dynamic Loading - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day204.md
Stored XSS via Mermaid Prototype Pollution vulnerability - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day205.md
Getting Partial AWS Account IDs for any Cloudfront Website - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day206.md
Remote code execution in cdnjs of Cloudflare - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day207.md
Docker Security Series - Serieshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day208.md
REvil Vanishes! - Chrome Zero-Day Vulnerability, iOS WiFi SSID Bug, Patch Tuesday Review - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day209.md
How to Build a Phishing Engagement – Coding TTP’s - Webcasthttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day210.md
Deep Link Exploitation: Introduction & Open/unvalidated Redirection - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day211.md
Exploiting Android WebView Vulnerabilities - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day212.md
WooCommerce Unauthenticated SQL Injection Vulnerability - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day213.md
Traversing My Way in the Internal Network - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day214.md
How I Found Multiple Bugs On FaceBook In 1 Month And a Part For My Methodology & Tools - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day215.md
Pre-Auth RCE in ManageEngine OPManager - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day216.md
Guest Blog Post - Attacking the DevTools - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day217.md
Kubernetes Hardening Guide - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day218.md
Introducing hallucinate: One-stop TLS traffic inspection and manipulation using dynamic instrumentation - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day219.md
Do Not use alert(1) in XSS - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day220.md
A Look Into zseano's Thoughts When Testing a Target - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day221.md
Zimbra 8.8.15 - Webmail Compromise via Email - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day222.md
Security XML Implementation across the Web - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day223.md
Potential remote code execution in PyPi - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day224.md
XXE Case Studies - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day225.md
HackerTools - NoSQLMap - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day226.md
Learn with @sec_r0: Attacks and Defenses to Docker & Kubernetes - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day227.md
Source Zero Con Talks - Talkshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day228.md
DevOps for Hackers with Hands-On Labs w/ Ralph May - Talkshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day229.md
Advanced Recon Guide - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day230.md
Just Gopher It: Escalating a Blind SSRF to RCE for $15k - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day231.md
Stealing Bitcoin with Cross-Site Request Forgery (Ride the Lightning + Umbrel) - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day232.md
Modify in-flight data to payment provider Smart2Pay - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day233.md
Hacker Heroes #9 - RobinZekerNiet (Interview) - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day234.md
Learn with @HolyBugx: Demystifying Cookies and Tokens - Talkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day235.md
Hacker Tools: ReNgine – Automatic recon - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day236.md
FROM PWN2OWN 2021: A NEW ATTACK SURFACE ON MICROSOFT EXCHANGE - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day237.md
How to Hack Apple ID - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day238.md
Insecure Features in PDFs - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day239.md
Burp Upload Scanner - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day240.md
Adobe Reader - PDF callback via XSLT stylesheet in XFA - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day241.md
A Curious Exploration of Malicious PDF Documents - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day242.md
Common mistakes when using permissions in Android - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day243.md
iOS Pentesting 101 - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day244.md
API Tokens: A Tedious Survey - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day245.md
Cross-Site Request Forgery (CSRF) Complete Guide - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day246.md
HTTP Desync Attack Explained With Paper - Videohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day247.md
AWS ReadOnlyAccess: Not Even Once - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day248.md
Understanding Salesforce Flows and Common Security Risks - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day249.md
Python context free payloads in Mako templates - Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day250.md
CVE-2021-26084 Remote Code Execution on Confluence Servershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day251.md
Introduction to smart contract security and hacking in Ethereumhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day252.md
Automating Authorization Testing: AuthMatrix – Part 1https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day253.md
Go Fuzz Yourself – How to Find More Vulnerabilities in APIs Through Fuzzinghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day254.md
More secure Facebook Canvas : Tale of $126k worth of bugs that lead to Facebook Account Takeovershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day255.md
Smart Contract Security Verification Standardhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day256.md
Remote File Inclusion Zines by @sec_r0https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day257.md
GitHub Actions check-spelling community workflow - GITHUB_TOKEN leakage via advice.txt symlinkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day258.md
Write-Up on Facebook Bughttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day259.md
Mass assignment and learning new thingshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day260.md
A different way to attack certain reverse proxieshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day261.md
Introducing Process Hiving & RunPEhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day262.md
IAM Vulnerable - An AWS IAM Privilege Escalation Playgroundhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day263.md
Complete Jailbreak Charthttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day264.md
OWASP Top 10 2021https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day265.md
Powershell for Pentestershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day266.md
How to search for XSS (with blacklisted HTML tags)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day267.md
How to learn anything in Computer Science or Cybersecurity - Security Simplifiedhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day268.md
Reused VMWare exploits & Escaping Azure Container Instances [Bug Bounty Podcast]https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day269.md
Docker Hackinghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day270.md
Getting Started in Blockchain Security and Smart Contract Auditing - Beau Bullockhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day271.md
HacktivityConhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day272.md
CrikeyCon 2021 - Shubham Shah - Hacking on Bug Bounties for Five Yearshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day273.md
Beginners Guide to 0day/CVE AppSec Researchhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day274.md
VULNERABILITY DIGGING WITH CODEQLhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day275.md
OMIGOD: Critical Vulnerabilities in OMI Affecting Countless Azure Customershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day276.md
Post Exploitation - Transferring Files To Windows Targetshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day277.md
SecuriTEA & Crumpets - Episode 12 - Ksenia Peguerohttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day278.md
Talk: Absolute AppSec Ep. #147 - James Kettle (@albinowax), Security Researchhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day279.md
A Flickr CSRF, GitLab, & OMIGOD, Azure again? [Bug Bounty Podcast]https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day280.md
NETGEAR smart switches, SpookJS, & Parallels Desktop [Binary Exploitation Podcast]https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day281.md
Unusual Applications of OpenAI in Cybersecurity + How to get into CTFshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day282.md
SiegeCast "COBALT STRIKE BASICS" with Tim Medin and Joe Vesthttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day283.md
An Attacker's Approach to Pentesting IBM Cloud - fwd:cloudsec 2021https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day284.md
echo "Shell Injection"https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day285.md
Exploiting Jinja SSTI with limited payload size.https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day286.md
Fuzzing WebSocket messages on Burpsuitehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day287.md
Thinking About Simple SQL Injectionshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day288.md
Training XSS Muscleshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day289.md
"A tale of making internet pollution free" - Exploiting Client-Side Prototype Pollution in the wildhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day290.md
Chasing a Dream:: Pre-authenticated Remote Code Execution in Dedecmshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day291.md
Multiple bugs allowed malicious Android Applications to takeover Facebook/Workplace accountshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day292.md
Ping'ing XMLSechttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day293.md
10 Types of Web Vulnerabilities that are Often Missedhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day294.md
CVE-2021–35215, SolarWinds Orion Deserialization to RCE.https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day295.md
Bachelor's thesis on HTTP Request Smugglinghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day296.md
Stored XSS in markdown via the DesignReferenceFilterhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day297.md
Building a POC for CVE-2021-40438https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day298.md
Turbo Intruder: Embracing the billion-request attackhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day299.md
How to conduct a basic security code review - Security Simplifiedhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day300.md
How to Analyze Code for Vulnerabilities using Joernhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day301.md
Azure Privilege Escalation via Service Principal Abusehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day302.md
CREATING A MALICIOUS AZURE AD OAUTH2 APPLICATIONhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day303.md
0-Day Hunting (Chaining Bugs/Methodology)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day304.md
Discourse SNS webhook RCEhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day305.md
Android Exploits 101 Workshophttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day306.md
SHELLS AND SOAP: WEBSPHERE DESERIALIZATION TO RCEhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day307.md
PHP-FPM LOCAL ROOT VULNERABILITYhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day308.md
Support Board 3.3.4 Arbitrary File Deletion to Remote Code Executionhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day309.md
SuDump: Exploiting suid binaries through the kernelhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day310.md
Attacking and Securing CI/CD Pipelinehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day311.md
Exploiting Protobuf Webappshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day312.md
CookieMonsterhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day313.md
Get shells with JET, the Jolokia Exploitation Toolkithttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day314.md
Android security checklist: WebViewhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day315.md
5 Ways to Exploit a Domain Takeover Vulnerabilityhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day316.md
Create a proxy DLL with artifact kithttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day317.md
How to search for XXE!https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day318.md
Defeating Android Certificate Pinning with Fridahttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day319.md
What can I do with Open Redirect with OAuth?https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day320.md
Practical HTTP Header Smuggling: Sneaking Past Reverse Proxies to Attack AWS and Beyondhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day321.md
T-Reqs: HTTP Request Smuggling with Differential Fuzzinghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day322.md
ChaosDB Explained: Azure's Cosmos DB Vulnerability Walkthroughhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day323.md
MULTIPLE CONCRETE CMS VULNERABILITIES ( PART1 – RCE )https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day324.md
Android App Hacking Workshophttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day325.md
Secondary Contexts Slideshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day326.md
HTTP/2 request smuggling (explained using beer)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day327.md
Scanning for hardcoded secrets in source code - Security Simplifiedhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day328.md
Staying sane in bug bountieshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day329.md
How Your E-book Might Be Reading You: Exploiting EPUB Reading Systemshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day330.md
Attacking SAML implementationshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day331.md
Uniscan: An RFI, LFI, and RCE Vulnerability Scannerhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day332.md
JavaScript type confusion: Bypassed input validation (and how to remediate)https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day333.md
Multiple Vulnerabilities in ResourceSpacehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day334.md
Unboxing BusyBox – 14 new vulnerabilities uncovered by Claroty and JFroghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day335.md
Zero-Day Disclosure: Palo Alto Networks GlobalProtect VPN CVE-2021-3064https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day336.md
Simple SSRF Allows Access To Internal Assetshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day337.md
Multiple Resource by XVNPW Bloghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day338.md
WordPress Plugin Confusion: How an update can get you pwnedhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day339.md
RCE with SSRF and File Write as an exploit chain on Apache Guacamolehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day340.md
Grafana CVE-2021-43798https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day341.md
Data Exfiltration via CSS + SVG Fonthttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day342.md
The Pen Testing Tools We’re Thankful for in 2021https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day343.md
HitCon CTF Challenges by Orangehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day344.md
Random Readingshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day345-363.md
Metasploit Basics for Hackershttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day364.md
NCC Group’s Cryptopals Guided Tour!https://patch-diff.githubusercontent.com/scriptkkiddie/learn365/blob/main/days/day365.md
Readme https://patch-diff.githubusercontent.com/scriptkkiddie/learn365#readme-ov-file
Please reload this pagehttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365
Activityhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/activity
6 starshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/stargazers
2 watchinghttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/watchers
1 forkhttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/forks
Report repository https://patch-diff.githubusercontent.com/contact/report-content?content_url=https%3A%2F%2Fgithub.com%2Fscriptkkiddie%2Flearn365&report=scriptkkiddie+%28user%29
Releaseshttps://patch-diff.githubusercontent.com/scriptkkiddie/learn365/releases
Packages 0https://patch-diff.githubusercontent.com/users/scriptkkiddie/packages?repo_name=learn365
https://github.com
Termshttps://docs.github.com/site-policy/github-terms/github-terms-of-service
Privacyhttps://docs.github.com/site-policy/privacy-policies/github-privacy-statement
Securityhttps://github.com/security
Statushttps://www.githubstatus.com/
Communityhttps://github.community/
Docshttps://docs.github.com/
Contacthttps://support.github.com?tags=dotcom-footer

Viewport: width=device-width

URLs of crawlers that visited me.