Category: Uncategorized

Canada Post data breach exposes 950,000 customers

A third-party supplier of Canada Post Corporation faced a major data breach giving the attacker 950,000 parcel recipients’ data. This was announced by the state-owned postal service in a press release published on the last week of May 2021. The actual incident happened to Commport Communication, a third-party supplier providing Electronic Data Interchange (EDI) solution

Read More

SUMO 1 – Vulnhub Walkthrough

This write up is about a simple vulnerable machine Sumo 1. It is a boot2root challenge from Vulnhub for beginners. In this vulnerable machine we must find the flag which is hidden inside. Also, I have used RustScan for network scanning which is a new tool and bit faster than traditional Nmap. Lets me explain

Read More

Ghostcat Vulnerability CVE-2020-1938 explained and exploited with Try-Hack-Me Tomghost machine

Today, I am back with an interesting blog on vulnerability named Ghostcat. The Apache Ghostcat vulnerability is an LFI (Local File Inclusion) vulnerability which is discovered by a security researcher of Chaitin Tech and came out in February 2020, while the world was gearing up for a lockdown fight up against the coronavirus. It allows

Read More

Potato:1 Vulnhub Walkthrough

   Hello, Infosec Community !! Today let’s crack the Potato:1 Machine from Vulnhub. You can download the machine from here; ( https://www.vulnhub.com/entry/potato-1,529/ ) Description Difficulty: Easy to Medium Goal: Get the root shell i.e.(root@localhost:~#) and then obtain flag under /root). We are going to follow the PTES Standards for cracking the machine. So, let’s start

Read More