DEV Community

TutorialBoy profile picture

TutorialBoy

Our mission is to get you into information security. We'll introduce you to penetration testing and Red Teaming. We cover network testing, Active Directory, Security Automation.

Location India Joined Joined on  Personal website https://tutorialboy24.blogspot.com/ github website twitter website
Analyzing the Google Chrome V8 CVE-2024-0517 Out-of-Bounds Code Execution Vulnerability
tutorialboy profile

Analyzing the Google Chrome V8 CVE-2024-0517 Out-of-Bounds Code Execution Vulnerability

#cybersecurity #infosec #vulnerabilities #cve
Comments
39 min read
Analysis of Glibc privilege escalation vulnerability "Looney Tunables" (CVE-2023-4911)
tutorialboy profile

Analysis of Glibc privilege escalation vulnerability "Looney Tunables" (CVE-2023-4911)

#cybersecurity #infosec #vulnerabilities #security
Comments
8 min read
Analysis of Microsoft Streaming Agent Privilege Elevation Vulnerability - CVE-2023-36802
tutorialboy profile

Analysis of Microsoft Streaming Agent Privilege Elevation Vulnerability - CVE-2023-36802

Comments
14 min read
Confluence Vulnerability (CVE-2023-22515): A Deep Dive into Atlassian Bamboo's Chain Security Landscape
tutorialboy profile

Confluence Vulnerability (CVE-2023-22515): A Deep Dive into Atlassian Bamboo's Chain Security Landscape

#cybersecurity #vulnerabilities #infosec #security
Comments
8 min read
Unveiling the Secrets of XSS Bypass: Harnessing JavaScript Symbols for Code Execution
tutorialboy profile

Unveiling the Secrets of XSS Bypass: Harnessing JavaScript Symbols for Code Execution

#xss #cybersecurity #infosec #vulnerabilities
Comments
3 min read
A Malicious Python Repository fshec2 PyPI Attack Analysis
tutorialboy profile

A Malicious Python Repository fshec2 PyPI Attack Analysis

Comments
4 min read
KeePass Memory Leakage Vulnerability Analysis - CVE-2023-32784
tutorialboy profile

KeePass Memory Leakage Vulnerability Analysis - CVE-2023-32784

#poc #cybersecurity #infosec #vulnerabilities
7
Comments
4 min read
Critical Analysis: Unraveling the Apache RocketMQ Remote Code Execution Vulnerability (CVE-2023-33246)
tutorialboy profile

Critical Analysis: Unraveling the Apache RocketMQ Remote Code Execution Vulnerability (CVE-2023-33246)

#cybersecurity #infosec #apache #informationsecurity
Comments
7 min read
Talking about JSONP Hijacking Vulnerability
tutorialboy profile

Talking about JSONP Hijacking Vulnerability

#json #cybersecurity #infosec #beginners
2
Comments
3 min read
Bypassing PHP WAF to Achieve Remote Code Execution In-Depth Analysis
tutorialboy profile

Bypassing PHP WAF to Achieve Remote Code Execution In-Depth Analysis

#php #cybersecurity #infosec #vulnerabilities
Comments
5 min read
Unveiling the Sudo Heap Overflow Vulnerability (CVE-2021-3156): A Critical Security Flaw Reappears
tutorialboy profile

Unveiling the Sudo Heap Overflow Vulnerability (CVE-2021-3156): A Critical Security Flaw Reappears

#cybersecurity #infosec #linux #cve
1
Comments
13 min read
LangChain Arbitrary Command Execution - CVE-2023-34541
tutorialboy profile

LangChain Arbitrary Command Execution - CVE-2023-34541

#cybersecurity #python #learning #poc
1
Comments
2 min read
Auth.Tesla.com's Vulnerability Leads To Account Takeover of Internal Tesla Accounts
tutorialboy profile

Auth.Tesla.com's Vulnerability Leads To Account Takeover of Internal Tesla Accounts

#cybersecurity #infosec #informationsecurity #opensource
9
Comments
4 min read
The Summary Of Spring Security Authorization Bypass on Java
tutorialboy profile

The Summary Of Spring Security Authorization Bypass on Java

#cybersecurity #vulnerabilities #infosec #springboot
Comments
12 min read
WebLogic Deserialization Vulnerability - CVE-2023-21839
tutorialboy profile

WebLogic Deserialization Vulnerability - CVE-2023-21839

#cybersecurity #infosec #cve
Comments
3 min read
An Authentication Bypass Vulnerabilities Methodologies
tutorialboy profile

An Authentication Bypass Vulnerabilities Methodologies

Comments
4 min read
Getting Started with Internet of Vehicles Security - CAN Simulation
tutorialboy profile

Getting Started with Internet of Vehicles Security - CAN Simulation

#penetration
Comments
6 min read
The Unbounded Loops Vulnerability : Denial of Service
tutorialboy profile

The Unbounded Loops Vulnerability : Denial of Service

#smartcontract #web3
Comments
4 min read
The VSCode Shortcuts, Extensions & Settings for Flutter Development
tutorialboy profile

The VSCode Shortcuts, Extensions & Settings for Flutter Development

#flutter
Comments
9 min read
An Unsafe Deserialization Vulnerability and Types of Deserialization
tutorialboy profile

An Unsafe Deserialization Vulnerability and Types of Deserialization

4
Comments
12 min read
Apache Commons Text RCE Vulnerability Analysis - CVE-2022-42889
tutorialboy profile

Apache Commons Text RCE Vulnerability Analysis - CVE-2022-42889

#cybersecurity #vulnerability #apache #security
5
Comments
3 min read
A Talk about Logic Vulnerabilities of Android Components - Android Security
tutorialboy profile

A Talk about Logic Vulnerabilities of Android Components - Android Security

#cybersecurity #android #security #informationsecurity
2
Comments
34 min read
A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters
tutorialboy profile

A Summary of Fuzzing Tools and Dictionaries For Bug Bounty Hunters

#bugbounty #cybersecurity #saml #infose
5
Comments
3 min read
A Brief Introduction to SAML Security Vector
tutorialboy profile

A Brief Introduction to SAML Security Vector

#saml #bugbounty #cybersecurity #infosec
8
Comments
29 min read
An Open Source apps Leads to XSS to RCE Vulnerability Flaws
tutorialboy profile

An Open Source apps Leads to XSS to RCE Vulnerability Flaws

#bugbounty #penetration #poc
3
Comments
6 min read
Sophos XG Firewall Authentication bypass allowing Remote Code Execution - CVE-2022-1040
tutorialboy profile

Sophos XG Firewall Authentication bypass allowing Remote Code Execution - CVE-2022-1040

#poc
2
Comments
8 min read
Cross-Site Scripting Vulnerabilities in Elementor Impact Over 65 Million Websites - CVE-2022-29455
tutorialboy profile

Cross-Site Scripting Vulnerabilities in Elementor Impact Over 65 Million Websites - CVE-2022-29455

#poc
2
Comments
10 min read
How To Exploit PHP Remotely To Bypass Filters & WAF Rules
tutorialboy profile

How To Exploit PHP Remotely To Bypass Filters & WAF Rules

#bugbounty #penetration #php
5
Comments
6 min read
Exploiting Amazon Simple Notification Service Improper Validation of SigningCertUrl
tutorialboy profile

Exploiting Amazon Simple Notification Service Improper Validation of SigningCertUrl

#poc
2
Comments
8 min read
A Rolling-PWN Attack Vulnerability Leads to Unlock or Start Vehicles Remotely - CVE-2022-27254
tutorialboy profile

A Rolling-PWN Attack Vulnerability Leads to Unlock or Start Vehicles Remotely - CVE-2022-27254

#poc
2
Comments
5 min read
A Talk About Java Serialization and Deserialization
tutorialboy profile

A Talk About Java Serialization and Deserialization

#applicationsecurity #java
1
Comments
6 min read
A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 2)
tutorialboy profile

A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 2)

#cloudsecurity #kubernetes #penetration
2
Comments
6 min read
A Heap Buffer Overflow in the Linux Kernal Leads to Root Privileges - CVE-2022-34918
tutorialboy profile

A Heap Buffer Overflow in the Linux Kernal Leads to Root Privileges - CVE-2022-34918

#poc
2
Comments
11 min read
The Blind Exploits To Rule Watchguard Firewalls Vulnerabilities
tutorialboy profile

The Blind Exploits To Rule Watchguard Firewalls Vulnerabilities

#poc
3
Comments
27 min read
Turning cookie based XSS into account takeover
tutorialboy profile

Turning cookie based XSS into account takeover

2
Comments
7 min read
XSS vulnerabilities discovered in ServiceNow - CVE-2022-38463
tutorialboy profile

XSS vulnerabilities discovered in ServiceNow - CVE-2022-38463

#poc
2
Comments
3 min read
A Mass Exploitation of Unauthenticated Zimbra RCE -- CVE-2022-27925
tutorialboy profile

A Mass Exploitation of Unauthenticated Zimbra RCE -- CVE-2022-27925

#poc
3
Comments
10 min read
How to Fix MSDT Vulnerability using SCCM and Intune | CVE-2022-30190
tutorialboy profile

How to Fix MSDT Vulnerability using SCCM and Intune | CVE-2022-30190

#applicationsecurity #poc
3
Comments
7 min read
The Fastjson “Auto Type Bypass” leads to RCE vulnerability - CVE-2022-25845
tutorialboy profile

The Fastjson “Auto Type Bypass” leads to RCE vulnerability - CVE-2022-25845

#poc
3
Comments
7 min read
An OGNL Injection Remote Code Execution (RCE) Vulnerability on Atlassian Confluence (CVE-2022-26134)
tutorialboy profile

An OGNL Injection Remote Code Execution (RCE) Vulnerability on Atlassian Confluence (CVE-2022-26134)

#poc
1
Comments
9 min read
The Various Utilization Methods of PHP Serialization & Deserialization
tutorialboy profile

The Various Utilization Methods of PHP Serialization & Deserialization

#bugbounty #penetration #php
6
Comments
22 min read
A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 1)
tutorialboy profile

A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 1)

#cloudsecurity #kubernetes #penetration
5
Comments
9 min read
Android Security : A Checklist For Exploiting WebView
tutorialboy profile

Android Security : A Checklist For Exploiting WebView

#cybersecurity #infosec #android #informationsecurity
2
Comments
11 min read
The Spring Data MongoDB SpEL Expression Injection Vulnerability - CVE-2022-22980
tutorialboy profile

The Spring Data MongoDB SpEL Expression Injection Vulnerability - CVE-2022-22980

#poc #springboot
3
Comments
3 min read
A Detailed Brief About Offence and Defence on Cloud Security - Etcd Risks
tutorialboy profile

A Detailed Brief About Offence and Defence on Cloud Security - Etcd Risks

#kubernetes
3
Comments
9 min read
A Critical Vulnerability Leads to Remote Code Execution in Sophos Firewall - CVE-2022-1040
tutorialboy profile

A Critical Vulnerability Leads to Remote Code Execution in Sophos Firewall - CVE-2022-1040

#poc
2
Comments 1
4 min read
Spring Actuator - Finding Actuators using Static Code Analysis - Part 2
tutorialboy profile

Spring Actuator - Finding Actuators using Static Code Analysis - Part 2

#cybersecurity #infosec #security #informationsecurity
1
Comments
10 min read
Spring Actuator - Stealing Secrets Using Spring Actuators - Part 1:
tutorialboy profile

Spring Actuator - Stealing Secrets Using Spring Actuators - Part 1:

#cybersecurity #infosec #springboot #informationsecurity
1
Comments
9 min read
A Remote Code Execution in JXPath Library (CVE-2022-41852)
tutorialboy profile

A Remote Code Execution in JXPath Library (CVE-2022-41852)

#cybersecurity #java #infosec #informationsecurity
2
Comments
4 min read
The Linux Kernel Network Scheduler Vulnerabilities and Exploits - Privilege Escalation
tutorialboy profile

The Linux Kernel Network Scheduler Vulnerabilities and Exploits - Privilege Escalation

#poc #vulnerabilities
Comments
17 min read
An Introduction to Smart Contracts Hacking and Attacks
tutorialboy profile

An Introduction to Smart Contracts Hacking and Attacks

#smartcontract
1
Comments
10 min read
loading...