Server Side Request Forgery (SSRF)
Introduction Is your server protected against port scanning? The general answer will be “Yes, I have a firewall which restricts […]
Category: Web Application Security
The Lesser Known XE Attack
The Meaning XE which stands for XML Entity is a standard for representing sets of data. Meanwhile, Entities are more […]
Mitigating the Remote Code Execution in Bash
Introduction In the last post we saw how the recent bash vulnerability can be remotely exploited in a variety of […]
Authorization Vulnerability in Yahoo! Pipes
Recently, I found an interesting issue qualifying on Yahoo! Pipes. But before going into the details of this specific issue, […]
Owning The Enterprise With HTTP PUT
During a routine penetration testing engagement, we found an IIS webserver with HTTP methods (verbs) like PUT and DELETE enabled […]
From SQL Injection To 0wnage Using SQLMap
SQL injection – one of the most critical vulnerabilities till now – is still included in the OWASP Top 10 […]
SSL/TLS attacks: Part 3 – BREACH Attack
Browser Reconnaissance and Ex-filtration via Adaptive Compression of Hypertext (BREACH) Attack: Previously we learnt how CRIME attacks SSL/TLS using SSL/TLS […]
SSL/TLS attacks: Part 2 – CRIME Attack
Compression Ratio Info-leak Made Easy (CRIME) attack: In the previous section we saw how the Chosen Plain-text attack was used […]
SSL/TLS attacks: Part 1 – BEAST Attack
Recently there has been a lot of news about a new SSL/TLS based attacks which was demonstrated in this year’s […]
[Survey] Web Application Security – Getting Coders To Code Securely
Web Application security has become the biggest concern for almost all organizations who wish to bring their business to the […]