Summary
A collection of my public infosec related stuff.
Tools
TInjA (Template INJection Analyzer)
Web Cache Vulnerability Scanner
Thesis
Bachelor’s Thesis: Automated Scanning for Web Cache Poisoning Vulnerabilities
External Blog Posts
Harvesting the Database - 5 CVEs in TOPqw Webportal
Template Injection Vulnerabilities– Understand, Detect, Identify
How Does FIDO2 Try to Solve the World’s Password Problem?
The New OWASP Top 10 API Security Risks 2023 – What Has Changed?
Multi-Factor Authentication (MFA) - Comparison of the 5 Most Used Possession Factors
BOLA - The #1 most critical API risk exemplified
Web Cache Vulnerability Scanner (WCVS) - Free, Customizable, Easy-To-Use
Is Your Application Vulnerable to Web Cache Poisoning?
CTF WriteUps & Videos
OWASP Juice Shop
Videos: 22
HackTheBox
Videos: 33
WriteUps: 9 (+22 still not finalized)
Practical Pentest Labs
Videos: 2
PicoCTF 2017
Videos: 2
HackThis!! (now: Defend the Web)
Videos: 1
WriteUps: 1
OverTheWire
WriteUps: 2