Yara AlHumaidan (0xy37)Attacking IBM MQ — SWIFT to Steal Money$$$What is IBM MQ?4 min read·Feb 27, 2022--1--1
Yara AlHumaidan (0xy37)Mail rules/forms to get a shellIf you were in a redteaming assessments, and you somehow have a valid credentials to a user mailbox you can get a remote shell using the…2 min read·Jan 3, 2022----
Yara AlHumaidan (0xy37)CVE-2021–44228 — Log4shellProof-of-Concept for Critical Apache Log4j Remote Code Execution Vulnerability Available (Log4Shell)3 min read·Dec 16, 2021----
Yara AlHumaidan (0xy37)My first CVE! CVE-2021–41825: Verint Workforce Optimization-HTML InjectionHTML injection is a type of injection vulnerability that occurs when a user is able to control an input point and is able to inject…2 min read·Oct 6, 2021----
Yara AlHumaidan (0xy37)Attacking Wireless network - WiFi HackingBefore starting, lets get some basics:7 min read·Sep 26, 2021--1--1
Yara AlHumaidan (0xy37)Linux L33T! - PE Cheatsheet! [OSCP Prep]One of the things that was hard for me to master during my OSCP preparation is privilege escalation. i didn’t know what to look for, where…11 min read·Jun 24, 2021----
Yara AlHumaidan (0xy37)Windows L33T! — PE Cheatsheet [OSCP Prep]One of the things that was hard for me to master during my OSCP preparation is privilege escalation. i didn’t know what to look for, where…7 min read·Jun 24, 2021----
Yara AlHumaidan (0xy37)Windows and Linux shells repositoryWhile doing OSCP i spent a lot of time looking for suitable reverse shells and web shells, i needed a repository for keeping all the shells…4 min read·May 23, 2021----
Yara AlHumaidan (0xy37)How to solve windows buffer overflows like a proIn March 2020 i decided to go for OSCP certification after giving this thought quite some time. Not because anything but because i hated…10 min read·May 3, 2021----