Herpaderping process– Evading Windows Defender Security
Evading windows defender security is always an interesting topic for information security professionals. When designing products for securing Windows platforms, many engineers in this field
Powershell Restrictions bypasses
In most mature environments and in most of these tests, access to command line tools is restricted. Employees typically cannot spawn Command Prompt or PowerShell.
Decrypting IOS apps Essentials
Frida way:- Step 1: Install Frida on the system (Mac/Windows) and iPhone I’m using my Linux pentesting box and installed Frida using #pip install Frida-tools Step 2: install
Mysql UDF Basics and Exploitation
So what is a UDF? It is a way to extend MySQL with a new function that works like a native (built-in) MySQL function; i.e.,
The art of file uploading :- pro level
I have recently published a blog post on use of .XAMLX files to execute command on an IIS based application. This blog has been has
Creating Rooted AVD in Android Studio
For a security enthusiast, a rooted Android device is essential to perform dynamic assessments of Android applications. They either rely on a physical device or
Insecure Data storage Analysis of iOS Applications
One might think that we are done with the static analysis of the application, but it is not so. We still need to look further
Analyze the Local Data Storage Of IPA from iOS device
.IPA is the package file for an iOS application. The difference is that an .IPA file can only be installed on a non-jailbroken iPhone via
Local Storage Analysis of IPA from pentesting device
This Blog explains the methods to analyze and investigate the potential security loopholes in an iOS application. In order to get an understanding of the
Android SSL pinning bypass with Frida
WHAT IS CERTIFICATE PINNING? Certificate pinning is the process of associating a host with their expected X.509 certificate or public key. Once a certificate or