Brownie framework for Smart Contracts

This post will serve as a reference on how to use Brownie development framework when dealing with EVM compatible blockchains like Ethereum or Binance Smart Chain. I did choose this framework since it’s based in python programming language which is easier IMHO than JavaScript one and I am interested only in auditing the smart contracts […]

SQL Injection without commas

While code reviewing a PHP web application last weekend I was happy to find a SQL injection vulnerability quickly in a search function. it was a time-based one and verified with a simple sleep() command So I decided to launch SQLmap to automate the rest of the exploitation part, However turned out things did not […]

OSWE Review

Hi ! Intro back in 2017 while scrolling the twitter feed I stumbled upon a tweet by mr_me announcing about the availability of AWAE course in next 2018 BlackHast Asia. honestly I was not planning to take the course any soon, it’s definitely in my agenda but not that soon since I was already doing […]

OSCE Review

Hi There, Ever since passing the OSCP exam I was thinking of taking the CTP course However, it was not a priority at that time since I have to focus on web stuffs. But In the last few months I had a free time to do. as usual to register the course you have to […]

eWPTX Review

Hello There, In this post I will talk about my experience with eWPTX certificate. I did register for this course since I was looking for advanced training in Web Hacking, eWPTX was the best option out there after reading the syllabus. Registration went smoothly, there is no waiting queue like OSCP. pay and start the […]