Bagheera Altered

Exploits, Research and Scripting

170+ Cybersecurity Regulations and Counting: What SaaS Companies Need to Know

MIT researchers analyzed the global regulatory landscape. Here's what it means for your compliance strategy—and why traditional pentesting misses the point.

9 min read · 2025

From Web App to Cloud Compromise

Why You Need Both Application and Cloud Penetration Testing

8 min read · 2025

Internal Penetration Test Notes

The idea, the execution, the common exploitations

4 min read · 2024

Large Language Model Penetration Testing

Exploiting weaknesses in Large Language Models

4 min read · 2024

Changing the exploit

Maybe there's something more interesting to focus on

2 min read · 2024

Quick Bash Fu to get an overview of a target

Getting a quick feel of the target

4 min read · 2024

Is the exploit not working? Keep going; don’t stop

In the middle of a pentest/bug hunt, and the exploit fails?

3 min read · 2024

Blind SQL Injection

Can't see the output, but you can see the effect of the injection

4 min read · 2024

170+ Cybersecurity Regulations and Counting: What SaaS Companies Need to Know

MIT researchers analyzed the global regulatory landscape. Here's what it means for your compliance strategy—and why traditional pentesting misses the point.

9 min read · December 23, 2025

2025 · compliance, regulations, SaaS, penetration-testing, cloud-security · posts
From Web App to Cloud Compromise

Why You Need Both Application and Cloud Penetration Testing

8 min read · December 21, 2025

2025 · hacking, cloud, aws, ssrf · posts
Internal Penetration Test Notes

The idea, the execution, the common exploitations

4 min read · June 28, 2024

2024 · hacking, exploitation · posts
Large Language Model Penetration Testing

Exploiting weaknesses in Large Language Models

4 min read · April 08, 2024

2024 · ai, exploit · posts
Changing the exploit

Maybe there's something more interesting to focus on

2 min read · February 11, 2024

2024 · hacking, exploitation · posts