HTTP request smuggling
Using HTTP request smuggling to hijack a user’s session – exploit walkthrough 
Application Security
06 Sep 2023
In this blog, one of our Application Security Auditors takes a look at the new HTTP request vulnerability, gives a...

Featured Posts
Application Security
10 Jan 2023
A pen tester’s guide to Content Security...
Application Security
08 Mar 2023
Account takeover vulnerability in Azure’s API Management...
Research & Threat Intel
20 May 2022
Credit Card Fraud Investigation: Underground Card Shops

Topics

Upcoming Events

Event
03 Oct 2023
Securmatica 2023
View the Event
What’s the difference: vulnerability scanning vs penetration testing
Application Security
27 Apr 2023
Vulnerability scanning and penetration testing should be an essential part of your cybersecurity strategy. This blog discusses the above methods...
Account takeover vulnerability in Azure’s API Management Developer Portal
Application Security
08 Mar 2023
How an Account Takeover vulnerability, discovered during a routine customer engagement, became a candidate for responsible disclosure, via the Microsoft...
How to find and fix jQuery vulnerabilities
Application Security
13 Feb 2023
Using an outdated jQuery library can open up your web application to vulnerabilities. Read more to find out how to...
A pen tester’s guide to Content Security Policy
Application Security
10 Jan 2023
In this article, we’ll look at Content Security Policy (CSP) through the eyes of a penetration tester. We will outline...