@obajoro profile picture
Cyber O. B. A. 👑 @obajoro
Joined May 2021
  • Tweets 4,275
  • Following 93
  • Followers 101
625 Photos and videos
Pinned Tweet
Cyber O. B. A. 👑@obajoro
Jun 11
🔐 Home Lab Series | VulnBank Vulnerability Simulation Continuing my hands-on cybersecurity journey, I set up and attacked VulnBank — a deliberately vulnerable banking web application designed for educational purposes — in my home lab environment. Building on my previous OWASP
Cyber O. B. A. 👑@obajoro
Jun 7
🔐 Lab Update | OWASP Juice Shop Simulation Attack Today I completed a hands-on offensive defensive security lab using OWASP Juice Shop as the target. Here's what I did: 🟥 OFFENSIVE (Burp Suite) • Acted as a Man-in-the-Middle to intercept live login traffic
1:58
0:25
1
1
108
Cyber O. B. A. 👑 retweeted
Miraclescrolls.base.eth 🙂‍↔️ |@Miraclescrolls_
Jun 14
7. Grammarly.com (perfect writing) 8. Luma.ai (create videos) 9. RecCloud.com (summarize YouTube) 10. Runway.ml (edit videos) 11. Descript.com (edit podcasts) 12. Syllaby.io (create faceless videos)
1
1
14
Cyber O. B. A. 👑 retweeted
Oge_chee
@Ogechee_
Jun 12
The first time I heard about Nmap was on TryHackMe, and I used it on the attack box for network discovery and security auditing. In yesterday's class, I ran it in my own lab against a VulnHub target machine. I ran different Nmap scans and then discovered a vulnerability. The scan showed 3 open ports and Nmap also flagged something on the web server: a publicly exposed .git folder. Apparently a developer deployed a site and forgot to remove the .git folder, and anyone can pull the entire git history of the site. That means source code and configs. #CyberSecurity #LearningInPublic
6
4
75
1,211
🔐 Home Lab Series | VulnBank Vulnerability Simulation Continuing my hands-on cybersecurity journey, I set up and attacked VulnBank — a deliberately vulnerable banking web application designed for educational purposes — in my home lab environment. Building on my previous OWASP
Cyber O. B. A. 👑@obajoro
Jun 7
🔐 Lab Update | OWASP Juice Shop Simulation Attack Today I completed a hands-on offensive defensive security lab using OWASP Juice Shop as the target. Here's what I did: 🟥 OFFENSIVE (Burp Suite) • Acted as a Man-in-the-Middle to intercept live login traffic
1:58
0:25
1
1
108
more replies
Business logic flaws are often invisible to automated scanners SIEM visibility is critical — Wazuh caught what a passive observer would miss More vulnerabilities to explore. Stay tuned. 🚀 #CyberSecurity #EthicalHacking #RedTeam #BlueTeam #BurpSuite #Wazuh #HomeLab #TSAcademy
1
39
1:56
2:17
1:25
2:14
8
beyond what the UI allowed. 4. Privilege Escalation via SQL Injection Leveraged the SQL injection vulnerability to access the admin panel and approve manipulated loan requests — simulating a full attack chain. 📌 Key Takeaways Server-side input validation is non-negotiable
0:54
1:21
1
27
Business Logic flaws are often invisible to automated scanners. SIEM visibility is critical - Wazuh caught what a passive observer would miss. More vulnerabilities to explore. Stay tuned 🚀 #Cybersecurity #EthicalHacking #RedTeam #BlueTeam #Burpsuite #Wazuh #SOCAnalyst #HomeLab
25
money transfer, and loan application workflows. 🔵 Blue Team — Wazuh SIEM Configured to monitor and alert on suspicious activity, including failed and successful login attempts tied to injection attacks. ⚠️ Vulnerabilities Exploited 1. SQL Injection — Authentication Bypass
1
34
Crafted SQL injection payloads to bypass the login page and gain unauthorized access, including escalating to the admin panel. All attempts were logged and alerted in my Wazuh dashboard. 2. Business Logic Flaw — Transfer Amount Tampering Intercepted a bank transfer request in
1:47
33
🔐 Lab Update | OWASP Juice Shop Simulation Attack Today I completed a hands-on offensive defensive security lab using OWASP Juice Shop as the target. Here's what I did: 🟥 OFFENSIVE (Burp Suite) • Acted as a Man-in-the-Middle to intercept live login traffic
1:58
0:25
1
4
274
more replies
and URL manipulation • Validated alert rules and confirmed detection coverage across all attack vectors 💡 What I learned: How to configure and integrate Wazuh as a SIEM tool to monitor and detect web application threats — bridging the gap between red and blue teaming.
1
53
This is exactly the kind of hands-on practice that builds real security skills. On to the next lab. 🚀 #CyberSecurity #EthicalHacking #BlueTeam #RedTeam #Wazuh #BurpSuite #SIEM #OWASPJuiceShop #InfoSec #CyberOBA
57
Load more