Touhid's Blog

Suid Binary – .so Injection(Weak File Permissions)(Privilege Escalation)

Post author:touhid
Post published:October 3, 2024
Post category:Mis Configuration Post Exploit Privilege Escalation
Post comments:0 Comments

Introduction SUID (Set User ID) binaries are executables that run with the privileges of the file owner rather than the user who executed the file. This capability can be advantageous…

Port Forwarding Explained

Post author:touhid
Post published:February 16, 2023
Post category:ganeral Post Exploit
Post comments:0 Comments

Port forwarding allows remote computers (for example, computers on the Internet) to connect to a specific computer or service within a private local-area network (LAN). SSH (Secure Shell) is a…

PSV-2018-0182: NetGear WNR614 WiFi Home Router Unauthenticated Remote Admin Forcibly Logout

Post author:touhid
Post published:February 6, 2023
Post category:Advisory Exploit Development
Post comments:0 Comments

. Introduction NetGear is a well-known name in the networking industry, providing a range of WiFi routers for homes and small businesses. One of the famous models from NetGear is…

(De | Un)serialization Detailed with Demo

Post author:touhid
Post published:January 17, 2023
Post category:Mis Configuration Others Attacks Web Attacks
Post comments:0 Comments

Local File Inclusion(LFI) Explained

Post author:touhid
Post published:January 17, 2023
Post category:LFI and RFI Web Application Web Attacks
Post comments:0 Comments

Hello Guys! Today I'm gonna explain you some Local File Inclusion Tricks. If you are really interested in Web Application Pentesting and want to learn in-depth about LFI soo, you…

Comments

Miro on Metasploitable3 Installing and Building (Step by Step)November 5, 2023
Hej bro, can you provide a link to get the OVA file, I run all the time into errors. I…
Matteo on Metasploitable3 Installing and Building (Step by Step)November 4, 2023
Hello, i would to tell the link for the .ova file is broken. Maybe you can update it.
Aki on Metasploitable3 Installing and Building (Step by Step)June 11, 2023
Hi, the link to Metaspoitable 3 isn't available ( OVA) could upload another link?
Keep your online assets safe with a solid understanding of DNS Records! As the b... - Bug Bounty Tips on Subdomain Takeover Explained with PracticalFebruary 13, 2023
[…] #DNSTechnologies is essential for #CyberSecurity professionals. For more on Subdomain Takeover touhidshaikh.com/blog/2019/01/s… #infosec #dnssecurity #bugbountytips Source by […]
Deidre on Pluck Walkthrough (VulnHub)May 14, 2021
Great post.