Elmehdi Laassiri

https://elmehdilaassiri.github.io/ Elmehdi Laassiri Pentesting methodology and security research blog. 2026-05-12T15:43:07+02:00 Elmehdi Laassiri https://elmehdilaassiri.github.io/ Jekyll © 2026 Elmehdi Laassiri /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png Webverselabs Gatekeeper Challenge SQLi 2026-05-12T02:00:00+02:00 2026-05-12T02:00:00+02:00 https://elmehdilaassiri.github.io/posts/Webverselabs-Gatekeeper-SQLI/ Elmehdi Laassiri

Summary : Gatekeeper Corp presents a web application with a login portal vulnerable to SQL Injection Authentication Bypass. The login form fails to properly sanitize user input, allowing an attacker to manipulate the underlying SQL query and gain unauthorized access without valid credentials. Solution : If we visit the webapp , we find a web page that explains what Gatekeeper corp is , We ...

Webverselabs Ember-Kettle Challlenge Reflected-XSS 2026-05-12T02:00:00+02:00 2026-05-12T15:40:25+02:00 https://elmehdilaassiri.github.io/posts/Webverse-Labs-Ember-Kettle/ Elmehdi Laassiri

Summary : In this challenge we are presented with a web application that we first enumerate as a normal user, mapping out its endpoints and functionality. During enumeration we identify two interesting endpoints — a Newsletter endpoint (POST) and a brew endpoint (GET) with a controllable parameter. After testing the brew endpoint for SQLi and Command Injection with no success, XSS payload...

HackSmarter Samurai Walkthrough 2026-05-10T02:00:00+02:00 2026-05-10T21:40:16+02:00 https://elmehdilaassiri.github.io/posts/HackSmarter-Samurai-Walkthrough/ Elmehdi Laassiri

Summary : In this lab, we start by enumerating the target and discovering that it is running Joomla. Using joomscan, we identify the exact version and find a known unauthenticated information disclosure vulnerability (CVE-51334) that allows us to dump credentials from the database. We use those credentials to log in to the Joomla admin panel and achieve Remote Code Execution by modifying a tem...

Web Application Pentesting Methodology 2026-05-06T02:00:00+02:00 2026-05-12T11:12:50+02:00 https://elmehdilaassiri.github.io/posts/web-app-pentesting-methodology/ Elmehdi Laassiri

Web Application Pentesting Methodology : Hey everyone! While preparing for CWES and OSWA, i decided to create a brand new methdology specific to Web Apps only , that i can follow and keep on improving . I based it mainly on the CWES path from HTB Academy (very detailed and in-depth), along with notes from The Pentest Book, Web-rta and other web pentesting resources. Structure: → Starts with ...

OSCP / CPTS Methodology 2026-04-28T02:00:00+02:00 2026-05-10T23:03:20+02:00 https://elmehdilaassiri.github.io/posts/oscp-cpts-methodology/ Elmehdi Laassiri

Checklist : Linux : Before having access : Do nmap scan . If you dont find a web app , just know the path is an outdated Service . always check versions first , if we find web : Find Directories + subdomains + files . If you find Tomcat , there is a way to Pentest it Down there . check version inside web side found as well . If we find a login page = try Auth bypass via SQL I...