Assignment 1 for webapps was mostly recon with a little sqli. For the sqli it was pretty much just throwing and or True style into the login to get the first flag, and then the second was the same but into the cookie, which is something not often though of. As for the recon component, … Continue reading Assignment 1 Writeup →

I know, I know, that is the coolest name ever. While doing assignment 1 for webapp security (which I'll post a write up of at some point next week, well after the due date), I discovered that there was no useful tool, that worked out of the box, to spider a domain and scrape all … Continue reading Project Spiderforce →

Let's look at the next two key pieces of the cyber security education triangle (tm). Firstly, courses need to be pragmatic, that is, practical and grounded in the real world. In the same lecture the lecturer assumed we needed to be taught about truth tables, while at the same time know about some obscure vulnerability … Continue reading Systematic and Pragmatic →

I've done it. I've found what's missing from cyber security education. I have the triangle that all trashy systems have (no offense if your trashy system has a triangle). Get ready. I present to you the cyber security education triangle (aptly named if I do say so myself). *insert picture* The three key points, I … Continue reading Cyber Security Education →