// security research · writeups
Archive.
5 entries
Feb 11, 2026 #01
CVE-2024-29643: When a Single Header Breaks Everything
How a simple Host header manipulation poisoned Croogo's RSS feed and opened the door to phishing and domain spoofing.
Security Research Host Header Injection CVE-2024-29643
Feb 6, 2026 #02
CVE-2026-25050: How a 300ms Difference Unmasked Vendure Users
A deep dive into a timing attack vulnerability I discovered in Vendure's NativeAuthenticationStrategy.
Cybersecurity CVE-2026-25050 Vendure
Sep 6, 2025 #03
Deep Dive: Kerberoasting Attacks
Understanding the mechanics of Kerberos tickets and how attackers crack service account passwords offline.
AD Cybersecurity RedTeam
Aug 23, 2025 #04
Blue Teamer
Une collection massive de 60+ outils et ressources pour la défense, le monitoring et la réponse aux incidents (Blue Teaming).
blue teaming defensive security cybersecurity
Aug 22, 2025 #05
Red Teamer: Offensive Methodologies
Analyse des techniques d'intrusion et de post-exploitation en environnement sécurisé.
red teaming offensive security cybersecurity