Blog - Choudhary Muhammad Osama
  • Home
  • Blog

April 2014

Lookout
POC

DOM-Cross Site Scripting (XSS) Found in Lookout

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a DOM Cross-Site Scripting (XSS) vulnerability in Lookout website www.lookout.com, which can be exploited by an attacker to conduct XSS attacks. DOM Cross-Site Scripting :- DOM Based XSS (or as it is called in some texts, “type-0 XSS”) is an XSS attack wherein Read more…

By Choudhary Muhammad Osama, 11 yearsApril 25, 2014 ago
POC

Weak Ciphers Found in Khan Academy

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a Weak Ciphers Vulnerability in Khan Academy website www.khanacademy.com, which can be exploited by an attacker to decrypt SSL traffic between web server and site visitors. Weak Ciphers :- Sensitive data must be protected when it is transmitted through the network. Such data can include Read more…

By Choudhary Muhammad Osama, 11 yearsApril 11, 2014 ago
c2fo
POC

OPTIONS Method Found in C2FO

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a OPTIONS Method Vulnerability in C2FO website www.c2fo.com, which can be exploited by an attacker to gain additional information about the target system. OPTIONS Method :- HTTP offers a number of methods that can be used to perform actions on the web server. Many Read more…

By Choudhary Muhammad Osama, 11 yearsApril 11, 2014 ago
Search
Recent Posts
  • Best Practices in Securing DevOps
  • Broken AWS Storage Spills Military Secrets Again
  • Analyst Builds WMI-Based Hacking Tool in PowerShell
  • Hazards of TOR Entrance Guards
  • OverTheWire Wargame Bandit Walkthrough
Categories
  • Article
  • POC
  • Tutorial
Recent Comments
  • Artem on How to Edit MS Word Text with C# Console Application
Archives
  • September 2018
  • December 2017
  • March 2017
  • August 2016
  • February 2016
  • January 2016
  • March 2015
  • November 2014
  • September 2014
  • June 2014
  • May 2014
  • April 2014
  • March 2014
  • February 2014
  • Facebook
  • Twitter
  • Google Plus
  • LinkedIn
  • Github
Hestia | Developed by ThemeIsle