The latest on CVE-2025-29927 – NextJS Vulnerability

What is Next Next.js? Next.js is a web development framework developed by Vercel build top of Reactwhich enable developers to build fast, scalable, high-performance and user-friendly web application What is…

Continue reading
SQLMap Cheat Sheet

What is SQLMap? SQLMap is an open-source penetration testing tool that automates the detection and exploitation of SQL injection flaws and takes over database servers. Basic SQLMap Commands CommandDescriptionsqlmap -u…

Continue reading
FFuF (Fuzz Faster U Fool) Cheat Sheet

Basic Commands CommandDescriptionffuf -u <URL/FUZZ> -w <wordlist>Basic directory/file brute-forcingffuf -u <URL/FUZZ> -w <wordlist> -e <ext>Brute-force directories/files with specific extensionsffuf -u http://FUZZ.example.com/ -w <wordlist>Brute-force subdomainsffuf -u <URL>?FUZZ=value -w <wordlist>Brute-force parameters in…

Continue reading
Gobuster Cheat Sheet

Basic Commands CommandDescriptiongobuster dir -u <URL> -w <wordlist>Directory brute-force against a web servergobuster dns -d <domain> -w <wordlist>DNS subdomain brute-force against a domaingobuster vhost -u <URL> -w <wordlist>Virtual host brute-force…

Continue reading