Summary
A collection of my public infosec related stuff.
Tools
TInjA (Template INJection Analyzer)
Web Cache Vulnerability Scanner
Thesis
Bachelor’s Thesis: Automated Scanning for Web Cache Poisoning Vulnerabilities
Blog Posts
Template Injection Vulnerabilities– Understand, Detect, Identify
How Does FIDO2 Try to Solve the World’s Password Problem?
The New OWASP Top 10 API Security Risks 2023 – What Has Changed?
Multi-Factor Authentication (MFA) - Comparison of the 5 Most Used Possession Factors
BOLA - The #1 most critical API risk exemplified
Web Cache Vulnerability Scanner (WCVS) - Free, Customizable, Easy-To-Use
Is Your Application Vulnerable to Web Cache Poisoning?
CTF WriteUps & Videos
OWASP Juice Shop
Videos: 22
HackTheBox
Videos: 33
WriteUps: 9 (+22 still not finalized)
Practical Pentest Labs
Videos: 2
PicoCTF 2017
Videos: 2
HackThis!! (now: Defend the Web)
Videos: 1
WriteUps: 1
OverTheWire
WriteUps: 2