Mudhalai MrinDeveloper Community SASTRAJavaScript Prototype pollutionPrototype pollution (not to be confused with Parameter pollution)is a little-known bug. Unlike SQL Injection or XSS, Prototype pollution is…4 min read·May 24, 2021----
Mudhalai MrinDeveloper Community SASTRAPwning PHP: Type JugglingIn PHP “==” is used to compare values of two variables, but like PHP the “==” comparison is also weird. When comparing a string and an…3 min read·Apr 29, 2021----
Mudhalai MrHeroCTF v3 Writeup: You Should DieYou should die is a web challenge with 60 points,2 min read·Apr 26, 2021----
Mudhalai MrHTB Cyber Apocalypse CTF 2021: Wild Goose HuntWild Goose Hunt is a web-based challenge with the difficulty of 2 stars,2 min read·Apr 24, 2021----
Mudhalai MrHTB CyberApocalypse CTF: CAASCAAS is a web-based challenge with a difficulty of one star,2 min read·Apr 24, 2021----
Mudhalai MrHTB Cyber Apocalypse CTF 2021: MiniSTRyplaceMiniSTRyplace is a web-based challenge with a difficulty of one star,2 min read·Apr 24, 2021----
Mudhalai MrinDeveloper Community SASTRAPwning PHP: Remote Code ExecutionRCE allows an attacker to execute code on the vulnerable machine, the severity of RCE is critical (well what do you need more than that?).2 min read·Apr 18, 2021----
Mudhalai MrinDeveloper Community SASTRANAT SlipstreamingI used to think if a device is not exposed to the public internet it is safe because bad actors cannot access them as it has NAT (Network…9 min read·Apr 7, 2021----