The acquisition puts the NotSoSecure business in a position of significantly greater strength, with a broader portfolio of services now available to our customers. NotSoSecure has been acquired by Claranet, one of Europe’s leading managed IT services providers, to add our ethical hacking training and penetration testing services to its
- Flutter based Mac OSX Thick Client SSL Pinning Bypass January 13, 2021
- Let’s Cook ‘Compliance as Code’ with Chef InSpec November 3, 2020
- Security Architecture Review Of A Cloud Native Environment September 22, 2020
- Semgrep A Practical Introduction August 13, 2020
- Continuous Security Monitoring using ModSecurity & ELK June 22, 2020
I attended troopers 09 in munich and it was a wonderful event. There were some very interesting talks. With regards to web application security, Sandro Gauci & Wendel Guglielmetti Henrique gave a talk on Web Application Firewalls. They also demoed a tool which could passively fingerprint around 10 different WAF.
I finally managed to fix a few bugs and release a new version. Other than the bug fixing, the new version also supports blind sql injection in “order by”, “group by” clause. There are currently a few issues with threaded perl. I have tested this under windows using activeperl. As
By Enumerating, the name and email address of a comment author, an attacker can read the comment submitted by the author while the comment still waits an administrator to approve it and publish it. This again points to the need for a better session management in WordPress. Read the full
WordPress 2.1.2 xmlrpc Multiple Vulnerabilities: Affected Versions: These issues were reported in version 2.1.2,(current stable version) and its very likely that previous versions may also be vulnerable. 1. Privilidge Escalation: Under normal circumstances (through web interface) a user in contributor role only has access to following functions: a. read b.