diff --git a/tech/security.wiki b/tech/security.wiki
index d360678..080bbcb 100644
--- a/tech/security.wiki
+++ b/tech/security.wiki
@@ -25,6 +25,11 @@ Hiding information
 * [[nmap|nmap]] - port scanner
 * [[masscan]]
 
+== Common attack vectors ==
+
+Try setting the HTTP `Host` header value to `internal-ip:80` where internal ip
+is the ip address of a device inside of the target network
+