SUMMARY Recently, the triager at mozilla pointed out to me, that when replying a link to a question, the reply will be mark as spam, and will be up for moderation. So i decided, to attack this ...
Il2cppDumper Manually Finding CodeRegistration and MetadataRegistration
INTRODUCTION While trying to dump the game marvel strike force. I encountered this error I have no idea what to do, so i do a google search and found this thread in unknowncheats https://www.un...
Hacking Mono Games With Frida
INTRODUCTION Recently, i’ve been practicing game hacking frida. Frida is an excellent tool for hacking. It allows us to make scripts in javascript, and is very flexible, a script, we made can be ru...
Changedetection CSRF to Local File Disclosure
INTRODUCTION Changedetection.io is a famous open source self hosted website change detection monitoring and notification service with over 4k github stars and over 1m+ docker pull. In this writeup,...
Unauthenticated Stored XSS on Django-Markdownx
INTRODUCTION Django-markdownx is a famous markdown library for python. According to github, it is used by 1.6k projects, on githubs, that doesnt include closed source projects and websites. In th...
Bookwyrm Server Side Request Forgery
While reading the code of bookwyrm, i encounter this endpoint This endpoint calls the function views.upload_cover. You can see that it accepts a post request from the decorator above, and it requ...
Hacking into school management systems. Reflected XSS To RCE
As a hacker, we are asked a million times before if we can hack into their school system and change their grades. So i decided to take it a little further and actually try to research on school ma...
Hacking and reverse engineering il2cpp games with ghidra
Last writeup, we talk about how to hack unity games compiled on mono. This time, we will be hacking unity games compiled in il2cpp. IL2CPP is a Unity3d technology for converting C# code to C++ code...
Hacking .Net Games With DnSpy
### Introduction Unlike native games that is made with c++/c, games made with c# are easier since c# is not compiled and the metadata are not completely lost. In this writeup, i will show you how ...
How To Get Started Hacking Django Based Applications
Django is a python based web framework. In this writeup, i will teach you how to analyze django based applications . For this writeup, i will be using wagtail for examples. When doing static code a...