Aug 3, 2018Taking Local File Disclosure to the Next LevelI recently discovered a path traversal vulnerability on a bash script exposed through the cgi-bin directory on an Apache server...
Jul 24, 2018Deserialisation VulnerabilitiesOWASP recently recognised the deserialization of untrusted data as one of their Top 10 Most Critical Web Application Security Risks.
Jul 10, 2017Stealing Amazon EC2 Keys via an XSS VulnerabilityOn a recent engagement, our testers were faced with a single page web application which was used to generate PDF documents. This web...
May 10, 2017Android Exploit Development with the Android Open Source Project ToolchainVulnerabilities to Stagefright attacking techniques have caused an alarming number of android phones to be hacked. Here's how to stop them.
_INV%20Ion.png)
