Trying to get Route53 logs from Cloudtrail can be tedious. This blog post discusses on how to get them with the help of AWS Athena.
Book review, notes and quotes from Ryan Holiday’s another amazing book “Stillness is the Key”.
Notes from my different experimentations when deploying Hashicorp Vault for centralised secrets management.
This is an introductory post on how to setup Jython in BurpSuite. Some awesome BurpSuite extensions like AuthMatrix, SAML Editor, etc require Jython. List of BurpSuite extensions that require Jython (as on Aug 2019) Additional CSRF Checks AuthMatrix Authorize Browser Repeater BurpelFish BurpSmartBuster Custom Parameter Handler Custom Deserializer ElasticBurp Git Bridge Google Hack JSON Decoder…
You don’t know what you got until it’s gone. And unfortunately it’s the same with data. Backup before it’s too late.
Checkout this article to know more on how to backup and restore ElasticSearch data with the help of GCS buckets.
Are you looking for a tool to test different HTTP verbs over URL / API endpoints ? Then the BurpSuite extension Meth0dMan is for you.
When you encounter a JWT token and verify (at JWT.io) if secret (password) was used to generate the JWT, do the following: Create a JWT token with None algorithm and pass with required parameters (say for example user=Admin) Try to bruteforce the JWT token with a wordlist containing common passwords Try to crack the JWT…
As a security researcher I read a lot of blog posts. Reading once doesn’t mean learning (atleast in my case). So I write down the important points I wish to learn from the blog posts and regularly recall them. Cloud Exploiting SSRF in AWS Elastic Beanstalk When you get SSRF in AWS instance, try to…
Want to know the thoughts running in the mind of a CEO incharge of a multi-billion dollar company? Or want to know which fields in computer science are likely to emerge in future?
Checkout the notes from the thought provoking book “Hit Refresh” by the one and only Satya Nadella, CEO of Microsoft.
Richard Hamming was an American mathematician whose work had many implications for computer engineering and telecommunications. “You and Your Research” is one of the most inspiring speeches for engineers and scientists (in human history I could say).