John's Blog – The number one rule in hacking is that you're not allowed, under any circumstances, to break any rules, whatsoever!

From The Blog

08Oct, 2022October 8, 2022

Roku TV Remote XHR Website + CORS Proxy

By admin

I’ve recently made a fun little webpage that doubles as a remote control for my new Roku TV. It works by sending External Control Protocol (ECP) messages to the TV’sContinue readingRoku TV Remote XHR Website + CORS Proxy

28Jun, 2022February 23, 2023

Theories Of Mind

Why The Machines Don’t Have Minds

By admin

Minds From Brains Brains Are Not Computers The Intentionality Bias / Fallacy A Parable But Perhaps They Could Have Their Own Minds… Final Thoughts

07Jan, 2022February 23, 2023

Uncategorized

Log4Shell In Action

By admin

This post is a practical demonstration of the Log4Shell Java Log4j loggingvulnerability (aka CVE-2021-44228). The steps below are taken directly from this blog post on sysdig.com. This demonstration provides aContinue readingLog4Shell In Action

07Aug, 2021January 7, 2022

Uncategorized

My Homebrew XSRF Demonstration

By admin

In a nutshell… Cross Site Request Forgery (CSRF/XSRF) is an attack where a malicious website forges request(s) to some legitimate website on behalf of an unsuspecting user. For example, sayContinue readingMy Homebrew XSRF Demonstration

15May, 2021July 8, 2021

Uncategorized

Basic PHP Injection and Protection

By admin

So first off, I’m not a PHP developer and I don’t really know PHP all that well. But I have found ways to exploit my own PHP scripts and soContinue readingBasic PHP Injection and Protection