Up at night I search with incite; so that without dismay, I can slay all the zero day.

Looks like our FSWA training for offensivecon has sold out! You can still grab tickets to the training in Rome at RomHack for the late September class: romhack.io/training/2024/…

New T’s just arrived in time for Berlin!

Just did the Full Stack Web Attack training from ϻг_ϻε at offensivecon - and it was definitely an awesome one. If you want to dig further in the Java/C# stacks, this is def recommended! Let's apply what I learnt soon! :D

SMarT ϻг_ϻε offensivecon srcincite.io/training/sched… you can see the next trainings here and you can browse the syllabuses for their training :)

That’s ok, the course content was updated this year anyway, but now you all know why I no longer offer online training.

Landed a nice auth-bypass via an XXE! If you wish to learn techniques like this, you should definitely sign up to our Sep 24-27th Full Stack Web Attack class at Cyber Saiyan | RomHack Conference, Training, Camp: romhack.io/training/2024/…

Highly recommended training! You'll gain valuable insights and skills, and the next three months will be packed for applying what you've learned on real-world targets.

This full chain analysis from discovery to exploit has been added to Full Stack Web Attack. The last training for this year is at Romhack between 24th-27th of September at romhack.io/training/2024/…. Student discount codes available, PM me but I only have a few left.

ϻг_ϻε "pop thy shell" lives on

Time to retire some content! JNDI Injection Remote Code Execution via Path Manipulation in MemoryUserDatabaseFactory: srcincite.io/blog/2024/07/2…

🔥One of the best advance exploitation trainings out there, you do not want to miss the boat on this, there are only a few seats left, sign up 💯

Definitely worth participating - if you want a solid training on web attacks, consider this one! :) I did it recently - and it was super useful!

For those curious, we had this bug in our Full Stack Web Attack training for ~1 year prior to disclosure :-)

Very excited to deliver Full Stack Web Attack next week, we have some new exciting content to share :-> 🤌🏻

Excited to be back in Rome delivering Full Stack Web Attack and landing a beautiful RCE the day before! Carpe diem! #FSWA

Popping calc with some .NET magic in some enterprise software during ϻг_ϻε training. This guy is amazing, book his training if you are interested in advance web exploitation targeting Java and .NET applications #romhack

We are taking a break from delivering our Full Stack Web Attack class in 2025 to focus more on the research. However on a case by case basis, we may still offer private trainings: srcincite.io/training/sched…

Some of the fun things we get to do in the FSWA class: Analyze fresh NDAY that comes out just two days before class!