Blog - Choudhary Muhammad Osama
  • Home
  • Blog

April 2014

Lookout
POC

DOM-Cross Site Scripting (XSS) Found in Lookout

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a DOM Cross-Site Scripting (XSS) vulnerability in Lookout website www.lookout.com, which can be exploited by an attacker to conduct XSS attacks. DOM Cross-Site Scripting :- DOM Based XSS (or as it is called in some texts, “type-0 XSS”) is an XSS attack wherein Read more…

By Choudhary Muhammad Osama, 9 yearsApril 25, 2014 ago
POC

Weak Ciphers Found in Khan Academy

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a Weak Ciphers Vulnerability in Khan Academy website www.khanacademy.com, which can be exploited by an attacker to decrypt SSL traffic between web server and site visitors. Weak Ciphers :- Sensitive data must be protected when it is transmitted through the network. Such data can include Read more…

By Choudhary Muhammad Osama, 9 yearsApril 11, 2014 ago
c2fo
POC

OPTIONS Method Found in C2FO

Ch. Muhammad Osama, an independent vulnerability researcher has discovered a OPTIONS Method Vulnerability in C2FO website www.c2fo.com, which can be exploited by an attacker to gain additional information about the target system. OPTIONS Method :- HTTP offers a number of methods that can be used to perform actions on the web server. Many Read more…

By Choudhary Muhammad Osama, 9 yearsApril 11, 2014 ago
Search
Recent Posts
  • Best Practices in Securing DevOps
  • Broken AWS Storage Spills Military Secrets Again
  • Analyst Builds WMI-Based Hacking Tool in PowerShell
  • Hazards of TOR Entrance Guards
  • OverTheWire Wargame Bandit Walkthrough
Categories
  • Article
  • POC
  • Tutorial
Recent Comments
  • Artem on How to Edit MS Word Text with C# Console Application
Archives
  • September 2018
  • December 2017
  • March 2017
  • August 2016
  • February 2016
  • January 2016
  • March 2015
  • November 2014
  • September 2014
  • June 2014
  • May 2014
  • April 2014
  • March 2014
  • February 2014
  • Facebook
  • Twitter
  • Google Plus
  • LinkedIn
  • Github
Hestia | Developed by ThemeIsle