XSS Contexts - BSCP Preparations
XSS Contexts As someone who has worked in Web App Penetration Testing for some time now, one thing I never fully understood was how expert testers...
My Blog
The thoughts expressed here are of my own and not of my employer. It is a place where I can share my thoughts and ideas with the world as well as solidify my understanding of the topics I write about.
Recent Posts
Async Python Programming and Uvicorn
Async Programming is a form of parallelism in which you are attempting to perform several jobs at the same time. Async works by using two main...
Setting Up a Bug Bounty Lab
Alright, so the motivation of this article came from the fact that I’ve been a penetration tester for 3 years at my day job but have yet to really...
Bchecks Part 1 - The Basics of Bchecks
Bchecks are custom scan checks that can be implemented in both Burp Suite Professional and Burp Suite Enterprise. Bchecks allow you to check for...
Part 1: A Beginner's Guide to SQLMap
There are a number of famous open source tools in the cybersecurity ecosystem. Few are as prolific as SQLMap. If you've never bothered to pick up the...
Hosting Your First Flask Application
The idea of hosting a website is a pretty simple idea. You make the website, you get the domain name, you hook everything together and boom, you have...
Recovering After a Bad Show
One of the main reasons I got into improv was not to just learn to be someone who could be funny on stage. A lot of my reason for starting in this...