avasdream@home:~#

  • Infrastructure as Code: Deploy Jitsi Meet to AWS

    Hello world! Since the global COVID-19 pandemic started a lot of businesses are now relying on video conference software like Zoom.In my humble opinion open source alternatives like Jitsi Meet are not getting enough attention. So today we are going to set up a Jitsi Meet Server on AWS. If...

  • Pentesting: Local file inclusion to remote code execution on Hackazon

    Hello World! Getting remote code execution is one of the most fatal vulnerabilities which can be present in an application. Today we are escalating a local file inclusion vulnerability to remote code execution on the Hackazon application. Hackazon is a vulnerable application from Rapid7 and the source code is public...

  • Infrastructure as Code: Setting up a web application penetration testing laboratory

    Hello World! Having a laboratory is necessary to sharpen your skills and deep dive into new vulnerabilities as a pentester. Today we are going to build a beginner friendly lab in the amazon cloud using Terraform. But first what is Infrastructure as Code and Terraform? Infrastructure as Code is a...