/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

www.veracode.com
| | pyn3rd.github.io
2.5 parsecs away

Travel
| | 0x01 ForewordsIn my previous presentation at the HITB Singapore Security Conference in 2021, titled "Make JDBC Attacks Brilliant Again," I delved into the vulnerabilities associated with JDBC (Java Da
| | taeluralexis.com
2.4 parsecs away

Travel
| | In this writeup, we'll exploit a Linux machine on Hack The Box with CVE-2023-46604, leveraging Java deserialization for remote code execution.
| | y4y.space
1.4 parsecs away

Travel
| | Intro The exploitation of this RCE consists of two parts, one being the lack of authentication validation to h5-vsan endpoint, and another being the unsafe reflection usage in Java which then caused a JNDI injection. I was not smart enough to come up with the JDNI attack chain, but certainly learned a lot while attempting...
| | blog.kdgregory.com
14.1 parsecs away

Travel
| When I want to package a Java application in a single JAR with all of its dependencies, I normally turn to Maven's Shade plugin. This ...