Frida Runtime Instrumentation [iOS:NSURLSession]
Tracing iOS NSURLSession instance methods and instrumenting those methods to log all the requests and responses. ...
Docker Container Scanning with Trivy
How to scan docker containers for vulnerabilities using trivy. ...
Jailbreak Detection and Bypass Techniques [iOS 12.2]
In this blog post we will look at different ways in which developers can implment jailbreak detection in their applications and the methods to bypass them. ...
Dumping Decrypted IPA [Jailbroken iPhone 5s iOS 12.2]
This post demonstrates how to dump decrypted iOS app IPA from a jailbroken iOS device. I’m using a Jailbroken iPhone 5s running iOS 12.2 to demostrate the entire process. ...
Pentester Academy Attacking and Defending Active Directory Lab
As of October 2019 I am a Certified Red Team Professional. This post summarises my journey in which I overcame the challenges in Attacking and Defending Active Directory Lab and became a Ceritified Red Team Professional. ...
(Objection) Mobile apps on remote device
This post describes how to hook applications running on a remote device (iOS/Android) using Objection. Describes how to setup port forwarding. ...
Passionfruit, Objection and Drozer
Setup instructions for mobile application assessment frameworks Passionfruit, Objection and Drozer. ...
Terminal Setup
The terminal emulator and themes I use in my virtual machines. ...
Exploit Exercises Protostar - Net 0-3 Solution
Protostar introduces the following in a friendly way: Network programming Byte order Handling sockets Stack overflows Format strings Heap overflows ...
OverTheWire - Bandit
The Bandit wargame is aimed at absolute beginners. It will teach the basics needed to be able to play other wargames. ...