Category: Mix

When dealing with JavaScript injection scenarios sometimes we might get into a difficult situation: the target page is not meant…

HackerOne just ran the online h@cktivity con and with it was a CTF. I spent 15 hours solving the big…

A new resource for software development leaders by Victoria Drake. I’m launching a brand new paid newsletter on Substack focused…

NahamCon 2021 – Introduction to Axiom – The Dynamic Infrastructure Framework for Everybody! @pry0cc Source link

In these strange times it’s important that we come together. A good way to find like-minded individuals is to join…

For those who haven’t had the pleasure, Avaya Aura is a (rather complicated) platform for managing IP phones. Today we’re…

Intro Many of you may never have heard of the Java based JSON serialization library called Fastjson, although it’s quite…

Whether you’re a pentester looking to gain some experience in mobile hacking or a developer aiming to build secure apps,…

GitLab AMA – Bug Bounty with Alex Chapman Source link

Deserialization in Perl v5.8 During a pentest, I found an application containing a form with a hidden parameter named “state”….

March has arrived and is roaring like a very confused lion, at least in the northern hemisphere. And much like…

Scanning for hardcoded secrets in source code | Security Simplified Source link