Sitemap.xml

A categorized list of my posts

Vickie Li

5 min readOct 31, 2019

Learn about SSRFs (Server-side Request Forgery) here:

Intro to SSRF

And how your firewall failed you.

medium.com

Exploiting SSRFs

And how I got your company secrets.

medium.com

Bypassing SSRF Protection

There’s always more to do…

medium.com

SSRF in the Wild

A totally unscientific analysis of those SSRFs found in the wild

medium.com

Learn about IDORs (Insecure Direct Object References) here:

Intro to IDOR

And how to cause a massive data breach.

medium.com

How to find more IDORs

And maximize their impact while hunting for bugs.

medium.com

Hacking Encryption With Signing Oracles

And why you should never reuse encryption keys

medium.com

Deserialization Vulnerabilities:

Hacking Java Deserialization

How attackers exploit Java Deserialization to achieve Remote Code Execution

medium.com

Diving into unserialize()

How PHP’s unserialize() works, and why it leads to vulnerabilities

medium.com

Diving into unserialize(): More than RCE

Achieving authentication bypass and SQL injection using PHP’s unserialize()

medium.com

Diving into unserialize(): POP Chains

Going from PHP’s unserialize() to POP chain exploits

medium.com

Diving into unserialize(): Magic Methods

Magic methods that can be used to kick start your RCE chain

medium.com

Diving into unserialize(): phar deserialization

Exploiting PHP deserialization vulnerabilities without unserialize()

blog.usejournal.com

PHP Type Juggling Vulnerabilities

How PHP’s type comparison features lead to vulnerabilities, and how to avoid them

medium.com

Deserialization Bugs in the Wild

A totally unscientific analysis of deserialization vulns found in the wild

medium.com

CSRF (Cross-site Request Forgery) is here:

Intro to CSRF: Cross-Site Request Forgery

To change your password, password not required!

medium.com

Bypassing CSRF Protection

Protection exists != not exploitable.

medium.com

Attacking Sites Using CSRF

From CSRF to user information leak, XSS and full account takeover.

medium.com

Learn more about Binary Exploitation here:

Intro to Reverse Engineering

Analyzing and Hacking Binaries with Ghidra.

medium.com

Intro to Reverse Engineering, Part 2

How To Patch Binaries For Hackers And Pen Testers

medium.com

Fending off Hackers

How modern binaries protect against attacks and how these protections are bypassed

medium.com

Binary Exploitation: Buffer Overflows

And how a jammed laptop key led to code execution?!!

blog.usejournal.com

Binary Exploitation: Buffer Overread

And how the Heartbleed bug works!

blog.usejournal.com

Binary Exploitation: Format String Vulnerabilities

And how printing a string led to code execution?!!

medium.com

Binary Exploitation: Data Execution Prevention

And how attackers can bypass DEP to achieve code execution.

medium.com

Binary Exploitation: Attacking Dynamic Linking

And how modern binaries protect against attacks

medium.com

Other Security stuff:

Hacking Python Applications

And how attackers exploit common programming pitfalls to gain control

medium.com

Polyglot Files: a Hacker’s best friend

And how to hide PHP code in JPEG files

medium.com

Hacking JSON Web Tokens (JWTs)

And how attackers forge tokens and log in as someone else.

medium.com

Hacking Git Directories

How to reconstruct source code from an exposed .git directory

medium.com

Hacking WebSocket

With Cross-Site WebSocket Hijacking attacks

medium.com

Hacking Banks With Race Conditions

How race conditions compromise the security of financial sites

medium.com

Exploiting ReDoS

Downing Servers With Evil Regular Expressions

medium.com

Sniffing The Keys To The Server

Stealing Port Knock Sequences For Server Access

medium.com

Killing Sudo, Getting Root

Gaining Root Access Using Sudo Killer

medium.com

Proxying Like a Pro

Using ProxyChains to Proxy Your Internet Traffic

medium.com

Hacking the Web With Fiddler

How to use Fiddler to debug and manipulate web traffic

medium.com

Intro to Malware Detection using YARA

Everything you need to get started detecting malware with YARA

medium.com

Diving into YarGen

Automatic Malware Detection Using YarGen and YARA

medium.com

An Android Hacking Primer

How to get started hacking Android applications

medium.com

Hacking SAML

Bypassing authentication using the Security Assertion Markup Language (SAML)

medium.com

Hacking the Same-Origin Policy

How attackers bypass the fundamental Internet safeguard to read confidential data

medium.com

Hacking XML Data

Obtaining illegal data access using XPATH injections

medium.com

Code Review 101

How to perform source code review to find vulnerabilities in web applications

medium.com

Crash Course Network Security

Attacking and defending our Interconnected world

medium.com

Hacking Flask Applications

Executing arbitrary commands using the Werkzeug Debugger

medium.com

Dangers of Public Wifi: Part One

What? But I’m already using HTTPS!

medium.com

Dangers of Public Wifi: Part Two

Please log in to Hilton Guest Wifi…

medium.com

Best Hacker and Security Blogs to Read

Please accept my eternal gratitude and creepy fangirling on twitter.

medium.com

How your Company was Hacked using Google Calendar

Be careful with those calendar settings…

medium.com

Get into Bug Bounties:

Beginner’s Guide to CTFs

How To Start With Security Capture The Flag Competitions

medium.com

Discovering The Hidden Web

How To Perform Pentest Recon Using GoBuster

medium.com

How to Get Into Bug Bounties

Your guide to hacking and earning on bug bounty programs

medium.com

Mastering the Skills of Bug Bounty

Your syllabus for going from newbie to top hacker

medium.com

A Tour Around the Bug Bounty Zoo

Your guide to different bug bounty programs and which you should go for

medium.com

Fuzzing Web Applications

Hunting for XSS and SQLi effortlessly and automatically

medium.com

Help! I Can’t Find Bugs!

What to do when you are stuck hacking

medium.com

How to Write a Better Vulnerability Report

Security teams are humans too. (1337 5p34k not included.)

medium.com

Out of Scope!

How to prevent N/As, informatives and other soul-sucking devils in the bug hunting world.

medium.com

Wrapping or modifying?

Customizing open source security tools to suit your bug hunting workflow.

medium.com

Learn Computer Science Concepts:

Understanding the OSI Model

What it is, and how to use it to understand computer networks

medium.com

How Does the Internet Work?

Understanding the Internet as a network using TCP/IP

medium.com

Powering the Internet with Base64

Diving into the mechanics of base64 encoding

medium.com

Explore your Career Options:

Cybersecurity Careers: Your Options

Exploring the paths you can take in your infosec career

medium.com

How to Get Into Cybersecurity

Your guide to landing your dream job in infosec

medium.com

How to Become an Ethical Hacker

Your syllabus: getting from infosec newbie to ethical hacker

medium.com

Young, Successful, and Depressed

The silent battle against depression of the young tech elites

medium.com

How to start Freelancing as a Computer Science Student

How to get a gig, manage everything and succeed as a college freelancer.

medium.com

How to Price your Freelance Work

Ask three simple questions.

medium.com

Exploring Alternatives: Life After Computer Science

Working for a Defense Contractor as a System Engineer

medium.com

Exploring Alternatives: Life After Computer Science #2

Working as a Startup Founder

medium.com

Read some Good Books:

How to Achieve Financial Freedom

Money Lessons from Rich Dad, Poor Dad

medium.com

How to Understand Anyone

Lessons from Captivate: The Science of Succeeding with People

medium.com

The Science of A Great First Impression

Lessons from Captivate: The Science of Succeeding with People

medium.com

How to Connect with Anyone in 30 Seconds

For anyone who has ever felt ridiculously awkward in social situations

medium.com

The Science of Charming Leaders

Lessons from Captivate: The Science of Succeeding with People, Part 3

medium.com