Measuring a Tor Hidden Service's idle Traffic
A month ago, I wondered myself how much traffic an idle hidden service would consume just to keep the necessary circuits open. To answer this question, I set up a
Just another security blog
BalCCon2k20 CTF: Let Me See And Dawsonite Writeups
Last weekend, I had the time to play the BalCCon2k20 CTF and since there are no writeups for the last two web challenges yet, I decided to change that. Let
Credentials hiding in plain sight or how I pwned your http auth
In this blog post I will go over the little research project I did about http authentication credentials hiding in plain sight. Idea A few month ago, I was thinking
Damn Vulnerable Bash Web Server
This won't be a long blog post, just a little pointer to an A/D CTF challenge that I created last year: A damn vulnerable web framework written in bash.
Files on web servers Part I: History Files
In part I of the blog series, we will go over some "history" files that are commonly found on web servers. What are history files? Most interactive commandline