2023

• 08-05Realor post-penetration tips
• 05-29Java-Deserialization-Chapter-Ⅲ
• 04-10Java Deserialization - Chapter Ⅱ
• 04-05Prometheus v9.0 release
• 03-30Java Deserialization - Chapter I
• 03-24Running frida without root
• 03-19Xcloud license analysis & crack

2022

• 12-06Bypass distribution platform from conception to implementation
• 10-29Cuckoo sandbox deploy tutorial
• 06-01Spring-security authorization bypass CVE-2022-22978 analysis
• 05-02Some KeyGens
• 04-27Django SQL injection CVE-2022-28346 analysis
• 04-10Bypass AV Platform - Nsharp
• 03-30Spring Core RCE Reappearance
• 03-29SpringCloud Function SPEL RCE analysis
• 03-28New Blog New Start

2021

• 12-13Log4j2-RCE
• 10-22Bypass UAC with ProgIDs
• 09-04Xcology9 license analysis & crack
• 06-07Struts2 vuln analysis - S2-001
• 01-06Apache Flink CVE-2020-17518/17519
• 01-04ZeroLogon CVE-2020-1472

2020

• 12-04Implements custom shell of Sqlmap
• 10-10Seeyon getshell tool V3.0
• 07-24ThinkPHP3.2.3 SQL injection analysis
• 07-03Agriculture information platform audit & crack
• 05-20Auto remove 360 with PyautoGUI
• 04-26Joomla RCE (CVE-2020-10238) analysis
• 04-12Emergency response - One
• 03-09Browser cookie steal tool

2019

• 11-19CISP-PTE PART-2
• 11-16CISP-PTE PART-1
• 10-22PHPstudy backdoor RCE tool
• 10-09Phpstorm debugging 500 error solution
• 09-24Portainer deploy vulhub container
• 08-27Siteserver RTD getshell tool
• 08-20Pentest case sharing - One
• 07-30Linux kernel LPE CVE-2019-13272
• 07-26BlogEngine.NET RCE analysis
• 07-16Seeyon A8 V5 installation guide
• 07-14Discuz ML getshell tool
• 06-27WordPress Plugin IEAC RCE analysis