RCE

1. RCE via Dependency Confusion

Writeup:

• System Weakness

• ChevonPhillip on Medium

• Alex Birsan on Medium

• HackerOne Report

2. RCE via File Upload

Writeup:

• HackTricks Book – File Upload

• SidBlog on Medium

• HackerOne Report

3. RCE via SQL Injection

• Oxeye Resource

• System Weakness Writeup

4. RCE via Local File Inclusion (LFI)

• LFI - RCE Cheat Sheet on GitHub

• Himanshu Gurjar on Medium

• Aditya Chauhan on Medium

5. RCE via Server-Side Request Forgery (SSRF)

• YouTube Video

• Infosec Writeups Article

• Aditya Chauhan on Medium

6. RCE via XML External Entity (XXE)

• Airman604 on Medium

• YouTube Video

• HackerOne Report

7. RCE via Command Injection

• PayloadsAllTheThings – Command Execution

8. RCE via Insecure Deserialization

• Secure Cookie – Insecure Deserialization

• BugBountyHunter Report (ID: 867)

• BugBountyHunter Report (ID: 776)

• PortSwigger Exploitation Guide

9. RCE via Server-Side Template Injection (SSTI)

• R3D Buck3t on Medium

• tplmap on GitHub

• Secure Cookie – SSTI

---