press release
Five strategies for uncovering vulnerabilities in web applications
Application Security
I’ve been working as an Application Security Auditor in Oupost24’s web application security testing team for almost three years now....
press release
Exploiting trust: Weaponizing permissive CORS configurations
Application Security
If you’re a pentester, or a consumer of application security pentest reports, you’ll probably have come across Cross-Origin Resource Sharing...
CSRF simplified: A no-nonsense guide to Cross-Site Request Forgery
Application Security
Cross-Site Request Forgery (CSRF) is a serious web security vulnerability that allows attackers to exploit active sessions of targeted users...
Cross-site scripting vulnerability found in Oracle Integration Cloud 
Application Security
In November 2023, while conducting a security assessment on a client’s instance of the Oracle Integration Cloud Platform, I discovered...
press release
PTaaS guide | Choosing the right test environment 
Application Security
A major challenge for developing modern applications is ensuring their security. Penetration Testing as a Service (PTaaS) is a cloud-enabled...