DivyanshuHow Yoga & Ayurveda Helped Me To Handle BurnoutAs a member of the infosec community, I have observed that many individuals are experiencing exhaustion and burnout for various reasons…2 min read·Mar 22, 2023--2--2
DivyanshuinInfoSec Write-upsAlibaba Cloud WAF Command Injection Bypass via Wildcard Payload in All 1,462 Built-in Rule SetAlibaba WAF version 3.0 was tested and very common payload was found bypassing command injection.3 min read·Mar 17, 2023----
DivyanshuinInfoSec Write-upsHTML and Hyperlink Injection via Share Option In Microsoft Onenote ApplicationHyperlink Injection it’s when attacker injecting a malicious link when sending an email invitation. HTML injection attack is injecting HTML…4 min read·Jun 28, 2022--1--1
DivyanshuinInfoSec Write-upsKubernetes 101 | Setting up Kubernetes Cluster LocallyThis blog is about setting the local Kubernetes cluster for learning & testing using multiple tools like Kind, Minikube, Kubeadm & K3s.6 min read·Jun 1, 2022----
DivyanshuinInfoSec Write-upsModule-3 | Introduction -Pentesting & Bypassing AWS/Azure/GCP Cloud WAF Fun & Profit1. Setting up Vulnerable Application For AWS WAF11 min read·May 25, 2022--2--2
DivyanshuinInfoSec Write-upsModule-2 | Introduction -Pentesting & Bypassing AWS/Azure/GCP Cloud WAF Fun & ProfitQ. What is Core Rule Set & why it is utilized by all the cloud WAFs? A. We will try to understand more about the core rule set along with…7 min read·May 25, 2022----
DivyanshuinInfoSec Write-upsSecure Code Review -1 | Cheat sheet For Security Vulnerability In Python — Injection FlawsBased on OWASP Top-10 Vulnerabilities. This time we are looking for secure coding bugs related to Injection Flaws4 min read·May 25, 2022----
DivyanshuinInfoSec Write-upsModule-1 | Introduction -Pentesting & Bypassing AWS/Azure/GCP Cloud WAF Fun & ProfitWhy you should not trust the cloud WAF?4 min read·May 16, 2022----
DivyanshuinInfoSec Write-upsHands on Tutorial of Amazon Simple Notification Service (SNS)Amazon Simple Notification Service (Amazon SNS) is a fully managed messaging service for both application-to-application (A2A) and…6 min read·Apr 11, 2022----
DivyanshuinInfoSec Write-upsQuick Guide For Running Clair Scanner via KatacodaThis guide talks about setting up the Clair scanner and performs scans on vulnerable DVWA container. Also now it is possible to perform a…3 min read·Sep 26, 2021----