Industry Blog / Category - Technical

By now, you may have heard the about Sarahah, the new anonymous chat application that’s gone viral around the world. Sarahah, available for Android, iOS and via the web, allows …

Read Story

This blog post was authored by Senior Security Analyst Zach Julian; you can connect with him on Twitter here. Atmail is a popular provider for cloud-based and on-premises email hosting …

Read Story

Portswigger is back with a brand new invention The newest addition to the much beloved Burp Suite, Collaborator, allows penetration testers to observe external resource interactions in their targets, especially …

Read Story

Amazon and other cloud providers have made it child’s play to spin up ephemeral server instances for quick deployment of various services. If you want a web server to host your …

Read Story

In May of 2014, Microsoft released Security Bulletin MS14-025. The vulnerability described in this disclosure could allow for the elevation of privilege if Active Directory Group Policy is used to …

Read Story

During an audit of ColdFusion 10 and 11’s administration panel, I discovered a reflected, DOM-based cross-site scripting flaw, and in this blog post, I will show you how to leverage …

Read Story

In the first part of our series, we looked at how to modify an iOS application binary by inserting load commands to inject custom dynamic libraries. In Part 2, we …

Read Story

You May Also Like

Subscribe by Email