https://bogs.io Security notes and technical articles from bogs.io en-us https://bogs.io/posts/the-decline-of-software.html https://bogs.io/posts/the-decline-of-software.html Sun, 15 Mar 2026 00:00:00 +0000 Software used to do one thing well and get out of the way. Now every tool wants a monthly fee, an internet connection, and an AI assistant. What happened, and what good still looks like. https://bogs.io/posts/attacking-smb.html https://bogs.io/posts/attacking-smb.html Thu, 10 Jun 2021 00:00:00 +0000 A practical guide to enumerating SMB, abusing null sessions, using PsExec, and capturing or relaying NTLM authentication. https://bogs.io/posts/complete-guide-to-csrf.html https://bogs.io/posts/complete-guide-to-csrf.html Mon, 15 Feb 2021 00:00:00 +0000 An end-to-end explanation of CSRF, including GET and POST attack patterns, attack preconditions, browser constraints, and common defenses. https://bogs.io/posts/cracking-passwords-with-python.html https://bogs.io/posts/cracking-passwords-with-python.html Mon, 15 Feb 2021 00:00:00 +0000 A walkthrough for building a threaded brute-force script that handles CSRF-protected login forms instead of relying only on off-the-shelf tools.