Blog - Choudhary Muhammad Osama
  • Home
  • Blog

April 2014

Lookout
POC

DOM-Cross Site Scripting (XSS) Found in Lookout

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a DOM Cross-Site Scripting (XSS) vulnerability in Lookout website www.lookout.com, which can be exploited by an attacker to conduct XSS attacks. DOM Cross-Site Scripting :- DOM Based XSS (or as it is called in some texts, “type-0 XSS”) is an XSS attack wherein Read more…

By Choudhary Muhammad Osama, 9 yearsApril 25, 2014 ago
POC

Weak Ciphers Found in Khan Academy

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a Weak Ciphers Vulnerability in Khan Academy website www.khanacademy.com, which can be exploited by an attacker to decrypt SSL traffic between web server and site visitors. Weak Ciphers :- Sensitive data must be protected when it is transmitted through the network. Such data can include Read more…

By Choudhary Muhammad Osama, 9 yearsApril 11, 2014 ago
c2fo
POC

OPTIONS Method Found in C2FO

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a OPTIONS Method Vulnerability in C2FO website www.c2fo.com, which can be exploited by an attacker to gain additional information about the target system. OPTIONS Method :- HTTP offers a number of methods that can be used to perform actions on the web server. Many Read more…

By Choudhary Muhammad Osama, 9 yearsApril 11, 2014 ago
Search
Recent Posts
  • Best Practices in Securing DevOps
  • Broken AWS Storage Spills Military Secrets Again
  • Analyst Builds WMI-Based Hacking Tool in PowerShell
  • Hazards of TOR Entrance Guards
  • OverTheWire Wargame Bandit Walkthrough
Categories
  • Article
  • POC
  • Tutorial
Recent Comments
    Archives
    • September 2018
    • December 2017
    • March 2017
    • August 2016
    • February 2016
    • January 2016
    • March 2015
    • November 2014
    • September 2014
    • June 2014
    • May 2014
    • April 2014
    • March 2014
    • February 2014
    • Facebook
    • Twitter
    • Google Plus
    • LinkedIn
    • Github
    Hestia | Developed by ThemeIsle