A comprehensive reference for mathematical symbols and quantum mechanics notation with detailed explanations
Abdul Wahab Junaid aw-junaid
🐞
aw-junaid
/ quantum-mechanics-symbols.md
Last active
November 30, 2025 03:50
Ultimate guide to mathematical notation and quantum mechanics symbols. Includes calculus, algebra, set theory, Dirac notation, quantum operators, and Greek letters with detailed explanations. Perfect for students, physicists, and researchers.
aw-junaid
/ mathematical-notations.md
Created
November 30, 2025 03:43
Comprehensive guide to all mathematical notations and symbols with explanations. Includes calculus (∫, ∑, ∞), algebra (∈, ⊂, ∀), geometry (∠, △, ∥), and logic symbols. Perfect for students, researchers, and technical writers.
A comprehensive reference guide for mathematical notation across all major branches of mathematics
aw-junaid
/ IDOR.md
Created
November 27, 2025 05:14
IDOR stands for Insecure Direct Object Reference, which is a type of web security vulnerability that occurs when an application directly exposes an internal object, like a user ID or file path, and doesn't perform adequate authorization checks. This allows an attacker to manipulate identifiers in a request, such as changing a URL parameter, to a…
Let's imagine our target is a project management application: https://projects.example.com.
Create accounts with the same role to test horizontal privilege escalation:
- Attacker Account:
attacker_user@mail.com - Victim Account:
victim_user@mail.com
aw-junaid
/ sqlInjection.md
Created
November 24, 2025 09:01
A SQL injection (SQLi) vulnerability is a web security flaw that enables an attacker to interfere with the queries an application makes to its database. It occurs when an application uses unsanitized user-supplied input to dynamically construct SQL queries, allowing malicious SQL code to be executed.
Important Note: Always start with deliberately vulnerable applications like DVWA (Damn Vulnerable Web Application) or Web Security Academy before testing on real bug bounty programs.
Identify all locations where the application accepts user input:
Common SQLi injection points:
- URL Parameters:
GET /users?id=1
Let's imagine our target is a note-taking application: https://notes.example.com.
You browse the application and identify actions that change data on the server. These are typically non-GET requests (POST, PUT, PATCH, DELETE).
Prime candidates on notes.example.com:
- User Profile:
aw-junaid
/ clickjacking.md
Created
November 23, 2025 13:25
Clickjacking is a malicious technique where a user is tricked into clicking something different from what they believe they are clicking. This is achieved by layering a transparent or invisible website element over a decoy page, which causes the user's click to perform an unintended action on the hidden, malicious site. Examples of this action i…
Let's imagine our target is a social media site: https://socialapp.example.com.
You browse the application and look for actions that change the state of your account or data and only require a single click (no text input, drag-and-drop, etc.).
Prime candidates on socialapp.example.com:
- Profile Actions:
aw-junaid
/ openredirect.md
Created
November 22, 2025 12:05
Open redirects are a great way to get started and understand how parameters work, and they can sometimes be the key to unlocking much more severe vulnerabilities.
Let's imagine our target is https://example.com.
You're browsing example.com and notice that when you click the "Login" button, it takes you to a URL like:
https://example.com/login?redirect=/dashboard
- Analysis: The
redirectparameter is a classic candidate. It tells the application where to send the user after a successful login. Other common parameter names include:
Let's imagine our target is a simple, hypothetical search page on a site like https://testbounty.example.com.
You navigate the site and find a search feature at the top of the page. The URL looks like this after you search for "shoes":
https://testbounty.example.com/search?query=shoes
aw-junaid
/ googledorking.md
Last active
December 7, 2025 23:10
Google Dorking, also known as Google Hacking, is the practice of using advanced Google search operators to find specific information that isn't readily available through normal searches.
Complete Reference for Advanced Search Operators
aw-junaid
/ 3d-model-sunlight-movement.ipynb
Created
March 21, 2025 01:56
3D model Sunlight Movement
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
NewerOlder