$ whoami
Hi, I'm cshwswwsshd99. 0x4F // CYBERLOG is my personal blog on web security — finding bugs, real-world exploitation, and reproducible proof-of-concepts. No buzzword soup, just one goal: take a vulnerability from first signal to a working PoC.
Currently 40 posts across AppSec / Cloud Security / Vulnerability Analysis / API Security / Recon / Pentest.
// coverage
- Vulnerability internals — injection, XSS, SSRF, deserialization, auth flaws
- Pentest walkthroughs — recon, breach, lateral movement, privilege escalation
- Recon methodology — subdomain enumeration, fingerprinting, attack-surface mapping
- Reproducible PoCs — exact payloads, example requests, and step-by-step exploitation
// stack
Next.jsReactTypeScriptCSS ModulesNginxDocker
// contact
root@0x4f.dev
⚠ RESPONSIBLE USE
Everything here reflects my own views. The security techniques I write about are shared strictly for education and authorized testing — only against systems you own or have explicit permission to test. Never use them for unauthorized access or attacks; you are responsible for your own compliance.