Jawad Nassar

InfoSec, Engineering Management and Digital Privacy.

About | Archive | GuestBook | GitBook

Projects & Presentations

2024-10-10 - AppSec for Developers: Introduction
2015-07-05 - Mikrotik hotspot login page based on bootstrap

Blog

2024-11-21 - Infinitely Ambitious Plans
2023-10-21 - Reflections on Trusting Trust
2023-09-10 - Nope, I am Printing my Docs!
2017-09-03 - HTTPS on Github Pages with a Custom Domain
2017-02-25 - Java Security: Illegal key size exception
2015-03-30 - Hello, World!

Lab

2023-09-09 - Dabbling in SOC and EDRs

CheatSheets

2025-03-09 - Upgrading TTY

CTF

2025-03-09 - HTB: Jerry
2025-03-08 - HTB: Nibbles
2023-07-02 - Write-up: SQLi attack, querying the database type and version on Oracle
2023-06-24 - Write-up: SQLi UNION attack, retrieving multiple values in a single column
2023-06-17 - Write-up: SQLi UNION attack, retrieving data from other tables
2023-06-05 - Write-up: SQL injection UNION attack, finding a column containing text
2023-05-29 - Write-up: SQL injection UNION attack, determining the number of columns returned by the query
2023-05-28 - Write-up: SQL injection vulnerability allowing login bypass
2023-05-27 - Write-up: SQL injection vulnerability in WHERE clause allowing retrieval of hidden data
2023-05-22 - PortSwigger Web Security Academy Journey