Personal site for cybersecurity projects, certifications, and creative branding. (Work-in-Progress)
Burp lab walkthrough demonstrating how a null origin CORS misconfiguration can be exploited to exfiltrate an administrator API key, with practical mitigation recommendations.
A concise technical walkthrough demonstrating exploitation and mitigation of a CORS vulnerability caused by basic origin reflection, including a reproducible PoC and prioritized remediation steps.
Educational pentesting lab – Red Team exercises with Kali Linux, Metasploitable2, Nessus, Burp Suit, Wireshark, tcpdump, Nmap, Metasploit Framework, SET, Hydra, sqlmap, aircrack-ng and vulnerable apps. Step-by-step reports, commands, and captures.
I'm creating a safer digital world. Every vulnerability I find is one less threat to someone’s data, privacy, or business. I’m building bridges of trust in a world full of uncertainty, and turning risks into resilience. My work might be behind the scenes, but its impact protects millions.
Unpacked DOM Invader Chrome extension for easy installation and use outside Burp Suite empowering bug bounty hunters and web security researchers.
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Hands-on Vulnerability Assessment & Pentesting Lab using DVWA hosted on Metasploitable and attacked from Kali Linux. Simulates OWASP Top 10 web vulnerabilities like SQLi, XSS, CSRF, and more using real-world tools such as SQLmap, Hydra, Burp Suite, and manual exploitation. Includes report, screenshots, and attack walkthroughs.
Este proyecto es una herramienta web diseñada para generar pruebas de concepto (PoC) de ataques CSRF (Cross-Site Request Forgery) a partir de una petición HTTP completa. Es útil para investigadores de seguridad-
🔐🕸️ A writeup containing solutions of Portswigger's Web Security Academy
Burp HTTP history browser (bhhb) - A tool to view HTTP history exported from Burp Suite Community Edition
This is a project to perform a BRUTE FORCE attack on a self hosted website to better the understanding of the importance of cybersecurity.
A simple tool that converts Burpsuite requests into Python for replicating in the Requests library
In this repository, I discuss the CSRF vulnerability and how to do execute a CSRF attack.
Web Penetration Testing with Kali Linux - Third Edition, published by Packt
Add a description, image, and links to the burpsuite topic page so that developers can more easily learn about it.
To associate your repository with the burpsuite topic, visit your repo's landing page and select "manage topics."