Security Blog

Cybersecurity research, vulnerability analysis, and practical security insights.

Pentest Scripts

String Encoding in the Shell for Obfuscation

Data encoding in the shell is a quick and reliable method to parse input in one type of format to format of another type. This could be done in order to determine how an application has converted...

Jul 06, 2026 6 min read
Pentest Scripts

Bash Web Requester

Bash Web RequesterScan URLs for a list of given regexps #!/usr/bin/env bash ################################################################ # Bash Web Requester # by Aung Khant,...

Jul 06, 2026 2 min read
Pentest Scripts

Bash Web Parameter Fuzzer

PenTester Scripting [[exploitation:bash_web_parameter_fuzzer]] You are here: start » exploitation...

Jul 06, 2026 3 min read
Pentest Scripts

SSL Tests - v2, weak ciphers, MD5, Renegotiation

SSL Tests - v2, weak ciphers, MD5, Renegotiation #!/usr/bin/env bash # Description: # Script to extract the most security relevant details from a # target SSL/TLS implementation by...

Jul 06, 2026 3 min read
Technical Analysis of Unpacking CVE-2
Vulnerability Research

Technical Analysis of Unpacking CVE-2

Unpacking CVE-2, specifically CVE-2024-21338, reveals a critical elevation of privilege vulnerability impacting the Windows kernel. This flaw allows a local, authenticated attacker to gain...

Jul 06, 2026 4 min read
Vulnerability Research

How Technical Analysis of the SimpleHelp RMM Works and What You Should Patch

Technical Analysis of the SimpleHelp RMM This technical analysis of the SimpleHelp RMM focuses on CVE-2026-48558, a critical authentication bypass vulnerability impacting deployments configured with...

Jul 05, 2026 5 min read
Vulnerability Research

How Unpacking CVE-2 Works and What You Should Patch

Unpacking CVE-2026-1337: Remote Code Execution in Acme SecureGateway Unpacking CVE-2026-1337 reveals a critical unauthenticated Remote Code Execution (RCE) vulnerability affecting Acme SecureGateway....

Jul 04, 2026 6 min read
Unpacking CVE-2026 — Impact, Detection, and Remediation
Vulnerability Research

Unpacking CVE-2026 — Impact, Detection, and Remediation

Unpacking CVE-2026 CVE-2026-4201 exposes Apache Struts applications to remote code execution (RCE). This critical vulnerability stems from improper input validation within the Struts...

Jul 03, 2026 5 min read
How Analyzing CVE-2024 Works and What You Should Patch
Vulnerability Research

How Analyzing CVE-2024 Works and What You Should Patch

Analyzing CVE-2024-3094: The XZ Utils Backdoor Analyzing CVE-2024-3094 reveals a critical supply chain compromise impacting XZ Utils. This vulnerability is a backdoor intentionally inserted into...

Jul 01, 2026 6 min read
Technical Analysis of Exploiting CVE-2026
Vulnerability Research

Technical Analysis of Exploiting CVE-2026

Exploiting CVE-2026-23918: A Critical Apache HTTP/2 Double-Free Vulnerability Exploiting CVE-2026-23918 presents a significant threat to internet-facing Apache HTTP Server deployments. This critical...

Jun 17, 2026 5 min read
Technical Analysis of Exploiting CVE-202
Vulnerability Research

Technical Analysis of Exploiting CVE-202

Exploiting CVE-2023-2023 represents a critical security threat to Cisco IOS XE Software deployments. This vulnerability allows an unauthenticated, remote attacker to gain administrative privileges...

Jun 16, 2026 6 min read
Mxtoolbox Spf Checker Alternative — Which One Fits Your Security Stack?
Security Tools

Mxtoolbox Spf Checker Alternative — Which One Fits Your Security Stack?

Email deliverability and domain reputation rely on proper SPF configuration. Security teams need reliable tools to validate SPF records and prevent email spoofing. MXToolbox offers a popular SPF...

Jun 15, 2026 10 min read