PinnedJoe HelleinThe MayorCVE Hunting Tips #004Observable Response and Timing Discrepancies·4 min read·Feb 25, 2023----
PinnedJoe HelleinThe MayorCVE Hunting Tips #002Text Input Denials of Service·6 min read·Jun 24, 2022----
Joe HelleinThe MayorBypassing Microsoft Defender SmartScreen — It’s Always DNSMicrosoft SmartScreen is used to identify possibly malicious websites and files. A user sees the following warning when visiting a…·3 min read·Apr 16, 2024----
Joe HelleinThe MayorCVE Hunting Tips #005Insecure Direct Object References (IDOR) / Broken Object Level Authorization (BOLA)·4 min read·Mar 18, 2024----
Joe HelleinThe MayorDomain Takeover Without Domain Admin PermissionsWhen the Administrator Group is Overused·4 min read·Jun 29, 2023--1--1
Joe HelleinThe MayorPython3 Command and Control How to GuideChapter Two — Socket Communications Part 1·4 min read·Apr 4, 2023----
Joe HelleinThe MayorPython3 Command and Control How to GuideIntroduction and Chapter One·7 min read·Apr 4, 2023--2--2