BadPods Series: Everything Allowed on AWS EKS
I have recently started out with Kubernetes, learning about scheduling, deployments, replicaSets and what even a pod is. And I
Read More
Author: Kiran Dawadi
HackTheBox: Alert — WalkThrough
Reconnaissance Let’s do a port scan on Alert machine. A HTTP server on port 80 is listening. Adding 10.10.11.44 alert.htb
Read More
Detection Engineering: ELK Stack with Fleet
Intro Last month, my team and I participated in the CCDC competition – an exciting cyber defense challenge where teams
Read More
Reply Challenges 2025 – CTF Writeup
Welcome to the Hack the Code Challenge 2025, the online competition that blends coding and cybersecurity! Below are the challenges
Read More
HackTheBox: Gunship — WalkThrough
Today, we will be doing Gunship from HackTheBox which is labeled as an easy-level Web challenge that aims at teaching AST injection
Read More
Exploring Web Security with OWASP BWA
In this blog post, I’ll take you through my hands-on exploration of common web vulnerabilities using the OWASP Broken Web
Read More
OAuth 2.0 — Security Considerations
Background Previously, the common way for granting authenticated access to web applications was through the use of a username and
Read More
Cookie’s SameSite Attribute vs CSRF — Demystified
Ambient Authority in the browser Whenever the browser sends off an HTTP request, it includes all the corresponding cookies for
Read More
FFUF — Everything You Need To Know
FFUF, short for “Fuzz Faster you Fool” is an open-source web fuzzing tool written in Go programming language, intended for
Read More
Lockheed Martin Cyber Kill Chain — Illustrated
The cyber kill chain is a series of steps that trace stages of a cyberattack from the early reconnaissance stages to the
Read More