Critical Vulnerability in Microsoft Translator hub writeup 1

Introduction A month back I was hunting for Vulnerabilities in Microsoft Web services, as Microsoft has large online infrastructure, finding a vulnerability which could lead to Microsoft hall of fame for security researchers wasn’t difficult. While browsing around their online services, one of their services, Microsoft hub translator caught my eye. Microsoft hub translator is and […]

Microsoft Security Bulletin

Penetration testing talk at FAST

Twin City Tester’s meetup at FAST University

Few days back , I was at FAST University for Twin City Testers meetup. The “Twin Cities Testers Meetup” (TCTM) was held on February 17th, 2015 at FAST Islamabad campus. The meetup was attended by more than 60 professionals from software testing and quality assurance industry, representing over 30 companies along with presence from the Academia.   I […]


Referer Header Based Blind SQL Injection Explained With Example

Introduction Hello everyone, this post is third in series of posts that I will be doing on SQL injection. Earlier I explained Second Order SQL Injections with Example and Column Truncation SQL injection Vulnerabilities Hopefully I will be doing more of these, focusing only on topics that are not well explained anywhere else and providing examples so that […]

Referer Header SQL injection Example

Open URL redirection in MSN earned Microsoft Hall of fame

Open URL Redirection in MSN earned Microsoft Hall of fame 1

Hi, Some time back I was hunting MSN for Security related bugs, mainly for getting Microsoft Hall of fame. Microsoft has a hall of fame for security researchers who find vulnerabilities in microsoft online infrastructure, security researchers are then acknowledged by Microsoft in their hall of fame. I was interested in getting there, although i […]


Cloudflare Web Application Firewall Review

  Cloudflare Web Application Firewall Review Hi, I hope most of you are familiar with Cloudflare, in short, CloudFlare protects and accelerates any website online. Check more details about their features Cloudflare Overview. I’m a fan of cloudflare right from the start. Cloudflare has a free account , pro and  business account, For over an year i […]

Cloudflare Web Application Firewall User Interface

Atlantic.net Network Speedtest

Atlantic.net VPS Review 10 months

Atlantic.net VPS Review 10 months Hi Its been 2 months i didn’t post anything, mainly because of my exams, I still do have em next week. For last 2 weeks, my website was offline because my VPS got expired and i didn’t know, So I got back on the horse and bought a new b0x. Its […]


Threat Intelligence Using Honeypots Final Year Project 2

  Threat Intelligence Using Honeypots Final Year Project Hey, As i am not updating my blog for sometime, i’m kinda busy in exams , final year project and what not. This post is about my final year project as BS computer sciences student. Initially I wanted to develop a vulnerable web app, like WebGoat and Mutillidae, but alot […]

Threat Intelligence Using Honeypots Final Year Project

Simple Python Fully Undetectable (FUD) Reverse Shell Backdoor

Simple Python Fully Undetectable (FUD) Reverse Shell Backdoor 1

  During Internal penetration testing, sometimes you get an environment, where Antiviruses are up to date , which means that, you cannot use “fancy” shells to get a reverse shell as they get detected. Metasploit is obviously not an option here, as most (if not all) metasploit exploits and tools are flagged by Antiviruses as […]