/posts/SHA-1-Implementation-in-C-programming-language/ 2025-04-29T00:00:00+08:00 /posts/DNS-Explained/ 2025-05-18T00:00:00+08:00 /posts/Source-Writeup-TryHackMe/ 2025-10-12T00:00:00+08:00 /posts/FlagCommand-writeup-HackTheBox/ 2025-11-13T00:00:00+08:00 /posts/Spookifier-writeup-HackTheBox/ 2025-11-13T00:00:00+08:00 /posts/Monster-Cookie-Secret-Recipe-Writeup-PicoCTF/ 2025-11-14T00:00:00+08:00 /posts/XSS-From-Browser-Parsing-to-Exploitation/ 2025-12-01T00:00:00+08:00 /posts/Reflected-XSS-into-HTML-context-with-nothing-encoded/ 2026-01-17T00:00:00+08:00 /posts/DOM-XSS-in-document.write-sink-using-source-location.search/ 2026-01-18T00:00:00+08:00 /posts/DOM-XSS-in-innerHTML-sink-using-source-location.search/ 2026-01-18T00:00:00+08:00 /posts/DOM-XSS-in-jQuery-anchor-href-attribute-sink-using-location.search-source/ 2026-01-18T00:00:00+08:00 /posts/Stored-XSS-into-HTML-context-with-nothing-encoded/ 2026-01-18T00:00:00+08:00 /posts/DOM-XSS-in-AngularJS-expression-with-angle-brackets-and-double-quotes-HTML-encoded/ 2026-01-19T00:00:00+08:00 /posts/DOM-XSS-in-document.write-sink-using-source-location.search-inside-a-select-element/ 2026-01-19T00:00:00+08:00 /posts/DOM-XSS-in-jQuery-selector-sink-using-a-hashchange-event/ 2026-01-19T00:00:00+08:00 /posts/Reflected-DOM-XSS/ 2026-01-19T00:00:00+08:00 /posts/Reflected-XSS-into-a-JavaScript-string-with-angle-brackets-HTML-encoded/ 2026-01-19T00:00:00+08:00 /posts/Reflected-XSS-into-attribute-with-angle-brackets-HTML-encoded/ 2026-01-19T00:00:00+08:00 /posts/Stored-XSS-into-anchor-href-attribute-with-double-quotes-HTML-encoded/ 2026-01-19T00:00:00+08:00 /posts/Reflected-XSS-into-HTML-context-with-most-tags-and-attributes-blocked/ 2026-01-20T00:00:00+08:00 /posts/Stored-DOM-XSS/ 2026-01-20T00:00:00+08:00 /posts/Lab-Reflected-XSS-into-HTML-context-with-all-tags-blocked-except-custom-ones/ 2026-01-22T00:00:00+08:00 /posts/Lab-Reflected-XSS-with-some-SVG-markup-allowed/ 2026-02-04T00:00:00+08:00 /posts/Writeup-of-head-dump-PicoCTF-challegne/ 2026-02-05T00:00:00+08:00 /posts/Product-Writeup-MOJOJO-CTF/ 2026-02-09T00:00:00+08:00 /posts/Zzz-Challenge-Writeup-mojoJOJO-CTF/ 2026-02-09T00:00:00+08:00 /posts/Exploiting-XSS-To-Steal-cookies/ 2026-03-20T00:00:00+08:00 /posts/Startup-Room-THM-Using-PTES/ 2026-03-30T00:00:00+08:00 /categories/ 2026-03-31T15:47:19+08:00 /tags/ 2026-03-31T15:47:19+08:00 /archives/ 2026-03-31T15:47:19+08:00 /about/ 2026-03-31T15:47:19+08:00 /certifications/ 2026-03-31T15:47:19+08:00 / /tags/cryptography/ /tags/networking/ /tags/dns/ /tags/dns-zone-transfer/ /tags/nmap/ /tags/msf/ /tags/cve-2019-15107/ /tags/webexploitation/ /tags/hackthebox/ /tags/ctfs/ /tags/ssti/ /tags/picoctf/ /tags/head/ /tags/xss/ /tags/cross-site-scripting/ /tags/labs/ /tags/sqli/ /tags/race-conditions/ /tags/portswigger/ /tags/storedxss/ /tags/cookiestealing/ /tags/csrf/ /tags/thm/ /tags/boot2root/ /tags/ftp/ /tags/anonymouslogin/ /tags/reverseshell/ /tags/pcap/ /tags/privilegeescalation/ /tags/pwnkit/ /tags/cve-2021-4034/ /tags/linux/ /categories/cryptography/ /categories/hash-functions/ /categories/c-programming/ /categories/networking/ /categories/dns/ /categories/information-gathering/ /categories/writeups/ /categories/msf/ /categories/webmin/ /categories/cves/ /categories/pentesting/ /categories/webexploitation/ /categories/vulnerabilities/ /categories/mojojojo/ /categories/cybersecurity/ /categories/penetration-testing/ /page2/ /page3/ /assets/KoussayDhifi_Resume.pdf 2026-03-31T15:46:53+08:00 /assets/certs/IUDC7.pdf 2026-03-31T15:46:53+08:00 /assets/reports/SpiceHut_Report.pdf 2026-03-31T15:46:53+08:00 /assets/reports/Xss_csrf_portlab.pdf 2026-03-31T15:46:53+08:00