https://aymanazzam.is-a.dev/ Penetration tester and offensive security researcher specializing in web application security, Active Directory attacks, red teaming, and vulnerability research. en Wed, 15 Apr 2026 00:00:00 GMT Wed, 15 Apr 2026 00:00:00 GMT vanilla-build-script 1440 https://aymanazzam.is-a.dev/writeups/example-bloodhound-edges.html https://aymanazzam.is-a.dev/writeups/example-bloodhound-edges.html Wed, 15 Apr 2026 00:00:00 GMT A practical short-list of BloodHound edges that consistently shorten attack paths in real Active Directory engagements — what to run, why it works, and what defenders should detect. BloodHound Active Directory ACL Abuse Red Team https://aymanazzam.is-a.dev/writeups/xss-admin.html https://aymanazzam.is-a.dev/writeups/xss-admin.html Fri, 12 Sep 2025 00:00:00 GMT Discovery, reproducible PoC, and remediation guidance for a stored cross-site scripting vulnerability in an administrative messaging component. XSS Burp Suite CVSS High https://aymanazzam.is-a.dev/writeups/ad-enumeration.html https://aymanazzam.is-a.dev/writeups/ad-enumeration.html Thu, 21 Aug 2025 00:00:00 GMT End-to-end AD recon workflow used during real engagements: domain discovery, ACL analysis, BloodHound collection, and detection signals to prioritize defense. AD BloodHound PowerShell https://aymanazzam.is-a.dev/writeups/kerberos-attack.html https://aymanazzam.is-a.dev/writeups/kerberos-attack.html Sat, 05 Jul 2025 00:00:00 GMT Technical research into Kerberoasting on modern Windows environments — attack chain, detection telemetry, PoC scripts, and Kerberos hardening guidance. Kerberos Impacket Hashcat https://aymanazzam.is-a.dev/writeups/tryhackme-capstone.html https://aymanazzam.is-a.dev/writeups/tryhackme-capstone.html Sat, 14 Jun 2025 00:00:00 GMT Lab-to-field writeup of a TryHackMe red team capstone — objective-based planning, execution notes, pivoting techniques, and post-engagement lessons learned. THM Red Team Pivoting https://aymanazzam.is-a.dev/writeups/idor-analysis.html https://aymanazzam.is-a.dev/writeups/idor-analysis.html Fri, 02 May 2025 00:00:00 GMT In-depth analysis of an insecure direct object reference in a file-download endpoint — exploitation logic, business impact, and robust server-side authorization patterns. IDOR Burp Suite AuthZ https://aymanazzam.is-a.dev/writeups/web-cache-poisoning.html https://aymanazzam.is-a.dev/writeups/web-cache-poisoning.html Fri, 18 Apr 2025 00:00:00 GMT Original research on cache poisoning vectors against modern CDNs and reverse proxies — PoC payloads, cache-key analysis, and hardening recommendations. Cache CDN Research