Server-Side Template Injection (SSTI)
October 2, 2025
{{ ''.__class__.__mro__[2].__subclasses__()[40]('/etc/passwd').read() }}
Read More
Server-Side Request Forgery (SSRF)
October 2, 2025
=======================================================
Read More
Server-side Prototype Pollution
October 2, 2025
+ https://github.com/Kirill89/prototype-pollution-exploits
Read More
Semgrep
October 2, 2025
docker run --rm -v \"${PWD}:/src\" returntocorp/semgrep semgrep --config=auto
Read More
Security Breach
October 2, 2025
Research notes and findings.
Read More
Scoping Requirements
October 2, 2025
The objective of the scoping meeting is to gain an understanding of what is to be tested, why the test is being performed, and any particular risks and concerns that the team has.
Read More