by Alex Olsen | Feb 23, 2023 | Programming, Web Applications
Most modern web applications load resources such as fonts and JavaScript from other domains or a CDN. CORS is a security feature that prevents unauthorized access to web resources. However, depending on how it’s implemented CORS can still be attacked. Let’s first take...
by Alex Olsen | Feb 15, 2023 | Career Advice, Learning
The science behind learning is a fascinating field that’s constantly evolving. There is no single, definitive answer to what the most effective learning technique is, and if there was, it would likely vary from person to person. However, there are a number of...
by Alex Olsen | Feb 7, 2023 | Programming, Security
JavaScript is a bit like Marmite, you either love it or hate it. Regardless of how it makes us feel, it is a powerful tool for attacking users and exploitation. Often, popping alert(1) is proof enough to get a fix but doesn’t demonstrate the full impact an attacker...
by Alex Olsen | Feb 3, 2023 | Blog, Learning, Penetration Testing, Security
Hypertext Transfer Protocol (HTTP) is an application layer protocol. On the surface, HTTP can appear quite simple, but there are a lot of quirks considering its use across inconsistent browsers and servers. Check out a video version of this article: Breaking Down An...
by Alex Olsen | Jan 27, 2023 | Penetration Testing
Target enumerated, check.Vulnerability identified, check.Tested payload delivery, check.RCE verified, check.Reverse shell…nope. Today we are going to look at some practical ways to troubleshoot your reverse shell. Some of these points come from logical thinking,...
