Profile

Cover photo
RafayHackingArticles
1,141 followers|425,965 views
AboutPostsPhotosVideos

Stream

RafayHackingArticles

Shared publicly  - 
 
Whatsapp 4G VIP SCAM - Technical Analysis
This is a short blog post describing about a recent hoax pertaining the WhatsApp 4.0 version. I would like to clearly highlight that there is no such application as ' Whatsapp 4G '. The version promises users  unrealistic features video calling, new whatsap...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Breaking The Great Wall of Web - XSS WAF Evasion CheatSheet
I think it's mandatory to give back to Security community from where we learn cutting edge techniques and information. Therefore after months of effort i am presenting to you a new WhitePaper titled " Breaking Great Wall of Web " without any strings attache...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Wordpress Mobile Detector Incorrect Fix Leads To Stored XSS
Recently, Wordpress Mobile Detector plugin was in news for the " Remote Code Execution " vulnerability that was found inside the resize.php file. The vulnerability allowed an external attacker to upload arbitrary files to the server as there was no validati...
Recently, Wordpress Mobile Detector plugin was in news for the "Remote Code Execution" vulnerability that was found inside the resize.php file. The vulnerability allowed an external attacker to upload arbitrary files to the s...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Bypassing Modern WAF's Exemplified At XSS (Webcast)
Past Saturday, I conducted a " Webcast " on " Garage4hackers " on one of my favorite subjects in the field of Information Security i.e. " WAF Bypass ". Initially, i had decided to present something on the topic of " Mobile Browser Security " due to the fact...
Past Saturday, I conducted a "Webcast" on "Garage4hackers" on one of my favorite subjects in the field of Information Security i.e. "WAF Bypass". Initially, i had decided to present something on the topic of "Mobile Browser S...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Bypassing Browser Security Policies for Fun and Profit (Full Presentation Video)
Blackhat has just recently released the full video for my talk on the subject of " Browser Security ", If you wish to read the Whitepaper/Slides and SOP Test Suite, you can refer to my previous post on " Bypassing Browser Security Policies For Fun And Profi...
Blackhat has just recently released the full video for my talk on the subject of "Browser Security", If you wish to read the Whitepaper/Slides and SOP Test Suite, you can refer to my previous post on "Bypassing Browser Securi...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Bypassing Browser Security Policies For Fun And Profit (Blackhat Asia 2016)
Few hours back, i delivered a talk at Blackhat Asia 2016  on "Bypassing Browser Security Policies For Fun And Profit ", the talk covered wide variety of topics starting from SOP bypasses, CSP bypass so on and so forth. Due to limited time i was only able to...
Few hours back, i delivered a talk at Blackhat Asia 2016 on "Bypassing Browser Security Policies For Fun And Profit", the talk covered wide variety of topics starting from SOP bypasses, CSP bypass so on and so forth. Due to limited time i was only able to cover few topics, however, ...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Breaking The Great Wall of Web - XSS WAF Evasion CheatSheet
I think it's mandatory to give back to Security community from where we learn cutting edge techniques and information. Therefore after months of effort i am presenting to you a new WhitePaper titled " Breaking Great Wall of Web " without any strings attache...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Google Chrome, Firefox Address Bar Spoofing Vulnerability
Introduction Google security team themselves state that " We recognize that the address bar is the only reliable security indicator in modern browsers " and if the only reliable security indicator could be controlled by an attacker it could carry adverse af...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Acunetix Website Hack And Lessons Learnt
Last night, Website of Acunetix (A Wellknown Automated Web Application Scanner) was hacked by Croatian hackers. From that point of this onward the website has been taken offline and acunetix team are reviewing the root cause for the hack. Currently the home...
Last night, Website of Acunetix(A Wellknown Automated Web Application Scanner) was hacked by Croatian hackers. From that point of this onward the website has been taken offline and acunetix team are reviewing the root cause f...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Bypassing Modern WAF's Exemplified At XSS (Webcast)
Past Saturday, I conducted a " Webcast " on " Garage4hackers " on one of my favorite subjects in the field of Information Security i.e. " WAF Bypass ". Initially, i had decided to present something on the topic of " Mobile Browser Security " due to the fact...
Past Saturday, I conducted a "Webcast" on "Garage4hackers" on one of my favorite subjects in the field of Information Security i.e. "WAF Bypass". Initially, i had decided to present something on the topic of "Mobile Browser S...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
How Much Do Hackers Know About You?
The threat of black hat hackers has never been greater than now, considering the increasing organization of their efforts to make a dollar off of your digital assets and information. The common portrayal of the hacker is someone who knows enough about progr...
The threat of black hat hackers has never been greater than now, considering the increasing organization of their efforts to make a dollar off of your digital assets and information. The common portrayal of the hacker is some...
1
Add a comment...

RafayHackingArticles

Shared publicly  - 
 
Facebook Account Hacked! What To Do Know?
Every single day i get emails in my inbox and on my facebook page  from users querying about how to recover hacked facebook account and a common problem i see in all of them is that they are proactive. Everyone searches for Facebook account recovery softwar...
Every single day i get emails in my inbox and on my facebook page from users querying about how to recover hacked facebook account and a common problem i see in all of them is that they are proactive. Everyone searches for Facebook account recovery softwares, Facebook hacking softwares and ...
1
Add a comment...
Story
Tagline
Learn Ethical Hacking And Security Tips From Experts.
Introduction
RafayHackingArticles a.k.a RHA is one of the top and leading security related blog owned by Rafay baloch covering topics such as security, Hacking news, Vulnerability research and Internet Security training for free.

The aim of RHA of to promote awareness regarding internet security and hackers. 

RHA get's more than 20k daily traffic, 10k+ twitter followers, 20k+ rss subscribers etc.
Contact Information
Contact info
Email