Jay ZDLin

Dangling Markup refers to unclosed or partially completed HTML tags within a web page’s code. Cyberattackers exploit this vulnerability to inject malicious code into a site, often exposing sensitive data or enabling unauthorized actions.

Example: <input type="text" name="input" value="CONTROLLABLE DATA HERE

1) Побег из песочницы (Sandbox Escape) — это техника, которую злоумышленники используют для обхода механизмов безопасности, которые предназначены для защиты компьютера.

2) Побег из песочницы — результат эксплуатации уязвимостей, позволяющих из изолированной среды — песочницы — выполнить вредоносный код за ее пределами.

An indicator of compromise (IOC) is evidence that someone may have breached an organization’s network or endpoint.

if an employer pays very low wages, they cannot expect to find good staff

The adversary is trying to move through your environment.

Lateral Movement consists of techniques that adversaries use to enter and control remote systems on a network. Following through on their primary objective often requires exploring the network to find their target and subsequently gaining access to it.

поддельный контроллер домена

Cache poisoning refers to a computer security vulnerability where invalid entries can be placed into a cache, which are then assumed to be valid when later used.