Web Exploitation SQLMap in Practice: From Detection to OS Shell
A practical SQLMap workflow covering request files, database enumeration, data dumping, OS shells, and WAF evasion with tamper scripts.
Web Exploitation
Web Exploitation 
Web Exploitation SSRF Deep Dive: Pivoting to Cloud Metadata, Internal Scans, and Filter Bypass
A practical guide to Server-Side Request Forgery: cloud metadata theft, internal port scanning, filter bypass, and Blue Team defenses.
Web Exploitation Attacking GraphQL APIs: Introspection, Batching, IDOR, and DoS
A practical guide to GraphQL pentesting: fingerprinting with graphw00f, introspection, batching, IDOR, and DoS, plus blue-team defenses.