Road to Root

Wessel Swanepoel

Wessel Swanepoel

Road to Root: WordPress and WAVE XXE

In this installment of Road to Root we demonstrate -again!- why, you should never host your WordPress applications on the same...

Wessel Swanepoel

Road to Root: Node.js and MongoDB Injection

In this installment of Road to Root we explore the intricacies of NoSQL injection and data exfiltration through html to pdf generators....

Wessel Swanepoel

Road to Root: Grafana and Consul Exploitation

In this installment of Road to Root we explore the dangers of exposing dev environments to untrusted networks. Sure, it's convenient and...