Step-by-step walkthrough of identifying UART pins on a consumer IoT gateway, dumping the firmware, and extracting credentials from the filesystem.
// section
Blog
Penetration testing research, techniques, and writeups across web, network, IoT, mobile, and phishing.
// Browse by category
IoT Security
Firmware extraction, hardware hacking, UART/JTAG, BLE and radio protocol attacks.
hardware · firmware · embedded
Web App Security
OWASP Top 10, bug bounty writeups, API security, OAuth abuse, and business logic flaws.
owasp · api · bug-bounty
Infrastructure Pentesting
Active Directory attacks, lateral movement, cloud pivoting, and post-exploitation.
active-directory · network · cloud
Phishing & Awareness
Phishing simulation methodology, vishing, pretexting, and security awareness training.
social-engineering · training
Mobile Security
Android and iOS penetration testing, Frida hooking, OWASP MASVS, and cert pinning bypass.
android · ios · frida · masvs
// Latest posts
How we chained a blind SSRF vulnerability with an IDOR in a SaaS platform's internal API to read files belonging to arbitrary tenants — and collected a $25,000 bug bounty.
Full walkthrough of a real internal engagement — LLMNR poisoning for initial creds, Kerberoasting for a service account, and DCSync for the keys to the kingdom.
How to design, execute, and debrief a phishing simulation campaign that measurably improves security awareness — without destroying trust or demoralising your team.
Updated guide to defeating certificate pinning in Android apps — covering OkHttp, Conscrypt, and custom pinning implementations — using Frida scripts in 2026.