Soroush Dalili (@irsdl) Blog

A web application security ninja 🥷, a semicolon enthusiast!

Skip to content

Home
Advisories
Privacy Policy
Bug Bounty Invites!
SecProject

Nothing Found

Apologies, but no results were found. Perhaps searching will help find a related post.

Search for:

Twitter
GitHub
LinkedIn

Search

MongoDB NoSQL Injection with Aggregation PipelinesJune 23, 2024
Cookieless DuoDrop: IIS Auth Bypass & App Pool Privesc in ASP.NET Framework (CVE-2023-36899 & CVE-2023-36560)August 8, 2023
Anchor Tag XSS Exploitation in Firefox with Target=”_blank”August 1, 2023
Thirteen Years On: Advancing the Understanding of IIS Short File Name (SFN) Disclosure!July 31, 2023
My MDSec Blog Posts so far in 2020/2021!October 31, 2020
File Upload Attack using XAMLX FilesSeptember 21, 2019
Uploading web.config for Fun and Profit 2August 15, 2019
IIS Application vs. Folder Detection During Blackbox TestingJuly 9, 2019
Danger of Stealing Auto Generated .NET Machine KeysMay 10, 2019
x-up-devcap-post-charset Header in ASP.NET to Bypass WAFs Again!May 4, 2019
Exploiting Deserialisation in ASP.NET via ViewStateApril 23, 2019
Yet Other Examples of Abusing CSRF in LogoutApril 23, 2019
How to win BIG and even more!April 17, 2019
Finding and Exploiting .NET Remoting over HTTP using DeserialisationMarch 26, 2019
More research on .NET deserializationDecember 19, 2018
Feel honoured to be there again after 8 years: Top 10 Web Hacking Techniques of 2017December 19, 2018
Story of my two (but actually three) RCEs in SharePoint in 2018December 19, 2018
ASP.NET resource files (.RESX) and deserialization issuesAugust 12, 2018
MS 2018 Q4 – Top 5 Bounty Hunter for 2 RCEs in SharePoint OnlineAugust 12, 2018
WAF Bypass Techniques – Using HTTP Standard and Web Servers’ BehaviourAugust 12, 2018

Archives

Blog Tags

REDDIT Web Security Research

arete | Fuzzing WebSockets for Server-Side Vulnerabilities April 30, 2025 /u/t0xodile
Python Dirty Arbitrary File Write to RCE via Writing Shared Object Files Or Overwriting Bytecode Files April 29, 2025 /u/siunam_321
Modern Cross-Site WebSocket Hijacking Exploitation April 22, 2025 /u/albinowax
Attacks via a New OAuth flow, Authorization Code Injection, and Whether HttpOnly, PKCE, and BFF Can Help April 10, 2025 /u/anador
GraphQL hacking: passing URL-encoded query parameters. March 30, 2025 /u/Moopanger
Next.js and the corrupt middleware: the authorizing artifact March 24, 2025 /u/albinowax
Next.js Authentication Bypass Vulnerability (CVE-2025-29927) Explained Simply March 23, 2025 /u/Available_Spell_5915
Discourse Backup Disclosure: Rails/nginx send_file Quirk March 20, 2025 /u/albinowax
SAML roulette: the hacker always wins March 18, 2025 /u/albinowax
Attempted Research in PHP Class Pollution February 27, 2025 /u/siunam_

Reddit netsec Channel Feed

Stealthy .NET Malware: Hiding Malicious Payloads as Bitmap Resources May 9, 2025
SCIM Hunting. Finding bugs in SCIM implementations May 8, 2025
CVE-2024-11477- 7-Zip ZSTD Buffer Overflow Vulnerability - Crowdfense May 8, 2025
AI Slop Is Polluting Bug Bounty Platforms with Fake Vulnerability Reports May 7, 2025
The Path to Memory Safety is Inevitable May 7, 2025

Exploit-DB Feed

[local] Microsoft Windows 11 Pro 23H2 - Ancillary Function Driver for WinSock Privilege Escalation
[local] VirtualBox 7.0.16 - Privilege Escalation
[webapps] WordPress Depicter Plugin 3.6.1 - SQL Injection
[webapps] SureTriggers OttoKit Plugin 1.0.82 - Privilege Escalation
[remote] Apache ActiveMQ 6.1.6 - Denial of Service (DOS)

Privacy Policy Proudly powered by WordPress