The Vulnerability As an early Christmas present a new vulnerability has been found in MongoDB. The vuln takes advantage of mismatched length fields in Zlib. Simply the server trusts the uncompresse...

Hammer is the final room in the Authentication path for Web Application Pentesting. Recon We are provided very little info so first lets do a nmap scan: Starting Nmap 7.95 ( https://nmap.org ) at...

HTA App - survey.hta Starting off this room we have a single task file survey.hta. This is a HTA application disguised as a Festive Elf Survey. <hta:application id="APP123080" applicationname="...