Writing
Notesfromthefield.
Offensive security writeups, research, and advisory-level thinking. Published when there's something worth saying.
34 posts
- Apr 14, 20263 min read
Custom Malware in C++
Developing a Custom Malware in C++ and Metasploit Shellcode
#malware#windows#assembly#guide#misc - Apr 14, 20267 min read
Hashcat Cheat Sheet
Hashcat is the most popular and faster hash cracker. In this cheat sheet we will see some quick usage of hashcat!
#hashcat#cheat-sheet#pentest - Apr 14, 202613 min read
Server-Side input validation testing
Here i have noted some server side input validation technique such as Sqli, RCE, SSRF etc
#sqli#rce#ssrf#lfi#cve - Apr 14, 20261 min read
Microsoft Word Macro Payload
Deliver your reverse shell via Microsoft office macros
#powershell#office-macro#initial-access - Apr 14, 20263 min read
MSDT-Follina Exploit for Initial Access
Exploit 0day Vulnerability like Microsoft Diagnostic Support Tool for Remote Code Execution
#rce#cve#windows#powershell#msdt - Apr 14, 20266 min read
Pentesting Web Auth
This is a cheat sheet based on OWASP testing guide and part of my web penetration testing cheat sheet which is compiled from real world situations!
#web#cheat-sheet#guide#web-pentest - Mar 18, 20252 min read
Stored xss in Perfex CRM 3.2.1 Contracts Module
A Stored Cross-Site Scripting (XSS) vulnerability exists in the Contracts Module of Perfex CRM, allowing authenticated client users to inject malicious JavaScript payloads. The …
#xss#linux#writeup - Sep 21, 20246 min read
Tmux Cheat Sheet
echo "Hello Bytium" printf "Hello Bytium"
#red-team#blue-team#linux#bash#tmux - Sep 21, 20247 min read
Why Bangladeshi Businesses Vulnerable to Cyber Attacks
Bangladesh’s Government is taking multiple steps to digitalize the country. This effort is appreciable. On the other side, cyber attacks in Bangladesh are also increasing. We kn…
#oscp#osce3#red-team#active-directory#privilege-escalation - Sep 20, 20245 min read
A Career Guide for Bangladeshi Ethical Hackers
Building your career as an ethical hacker takes time. If you are a Bangladeshi, it may take longer(Don’t be overwhelmed 🙂 ). It can’t happen overnight. Remember, you are an eth…
#oscp#web#guide#career#writeup