hackcommander.github.io

Iván Santos Malpica
(Aka. HackCommander)

Mathematician and Computer Engineer / Pentester / Bug Bounty Hunter / CTF Player

Time-based SQL injection in a login form

October 17, 2022

Partial disclosure of a bug bounty report: time-based SQL injection in login form.

Reflected XSS bypassing HTML tag removal sanitization

September 20, 2022

Partial disclosure of a bug bounty report: reflected XSS bypassing HTML tag removal sanitization.

web osint amass httpx burpsuite gau kxss xss python bypass sanitization

eJPT certification review

September 01, 2022

Review of the eJPT (eLearnSecurity Junior Penetration Tester), certification of eLearnSecurity intended for students interested in obtaining the necessary training that a junior pentester should have.

elearnsecurity ejpt pentesting

Iván Santos Malpica(Aka. HackCommander)

Recent Posts

Time-based SQL injection in a login form

Reflected XSS bypassing HTML tag removal sanitization

eJPT certification review

Iván Santos Malpica
(Aka. HackCommander)