Find and fix security issues in your Android app’s code with AppSweep: a mobile application security testing solution, based on ProGuard technology.

A checklist of practices for organizations dealing with account takeover (ATO) - ato-checklist/README.md at master · magoo/ato-checklist

A walkthrough of my first experience in router hacking

I imagine we've all heard about the recent 'Sequoia' bug discovered by the Qualys Research team. It's a fascinating bug so I decided to do variant analysis using CodeQL!

Overview

Cookie and credential stealing malware-as-a-service delivered by dropper-as-a-service now packs a “clipper” to steal crypto-transactions, and can drop other malware.

Posted in r/netsec by u/Floni • 4 points and 0 comments

What is SAML? Security Assertion Markup Language (SAML) is an open standard for exchanging authentication and authorization data between parties.
Source: Wikipedia
SAML is often used for single-sign on (“Sign in with Google”, “Sign in with Twitter” etc.).…

If you walk down the streets of Serbia's capital, Belgrade, your face will almost certainly be recorded by one of the city's 1,000 Huawei security

Intro This report will go through an intrusion that went from an Excel file to domain wide ransomware. The threat actors used BazarCall to install Trickbot in the environment which downloaded and e…

Several months ago I found an issue (now CVE-2020-27348) with Ubuntu’s new package management system, Snapcraft. This bug introduced a classic pattern of ins...

Posted in r/netsec by u/Photogurt • 2 points and 1 comment

CVE-2021-36798 is a vulnerability in Cobalt Strike server that could allow victims to register a fake Beacon and DoS attackers.

This is a follow-up to the HS256/RS256 Type Confusion attack against the JWT protocol. Now, firebase/php-jwt attempts to side-step this risk by forcing the user to hard-code the algorithms they wis...

Facebook Server Side Request Forgery (SSRF)The following could have given the ability to make arbitrary HTTP requests to servers within Facebook’s production network Facebook SSRF via /me/personas There exists a SSRF in the graph.facebook.com/me/personas…

In reading Yan Zhu’s excellent write-up of the JSON CSRF vulnerability she found in OkCupid one thing puzzled me: I was under the impression that browsers these days default to …

We can increase our capabilities to distribute our HTTP requests over a larger and larger pool of networks.

"Golden" certificates. Contribute to GhostPack/ForgeCert development by creating an account on GitHub.

Active Directory certificate abuse. Contribute to GhostPack/Certify development by creating an account on GitHub.