October 20, 2016
I am a customer of YesBank and I hold my savings account with them. I also use the YesBank’s online banking application and I strongly feel that […]
Sandeep Kamble October 20, 2016Stay tuned with SecureLayer7 Announcements
- All
- 3CX
- 3CX Supply Chain
- Account takeover vulnerability
- Active Directory Pentest
- Analyzing Security Vulnerabilities in XWiki
- Android Penetration Testing
- android pentesting
- Android Security
- API Penetration Testing
- API Security
- AppSec vs DevSecOps
- ASP.net Umbraco Security
- Automated Penetration Testing
- Automated Scanning
- AWS Penetration Testing
- Azure Penetration Testing
- Blue team
- bootstrapped startups
- Breach and Attack Simulation
- BugDazz
- ChatGPT
- cheap pentesting
- cheap pentesting for bootstrapped startups
- Cloud Penetration Testing
- Cloud Security
- Cloud Vulnerabilities
- Complete Guide
- Compliance
- Compliance Penetration Testing
- Cpanel Security
- CVE Releases
- Cybersecurity
- Cybersecurity Due Diligence
- Cybersecurity in Healthcare
- cybersecurity mistakes
- Data Security
- Deserialization
- DevSecOps
- Disclosure
- DNS Rebinding
- Events
- External Penetration Testing
- GDPR
- Google Cloud Platform
- GoPhish
- Gratis 2017
- Healthcare
- HIPPA
- HTTP Parameter Pollution
- HTTP Request Smuggling
- Insecure Direct Object Reference
- Internal Penetration Testing
- iOS Penetration Testing
- IoT penetration testing
- IoT Security
- Java Application
- Jobsatsecurelayer7
- Joomla Security
- JSON Web Token
- JSON Web Token Misconfiguration
- JWT
- Knowledge-base
- Kubernetes
- Kubernetes Security
- Latest Data Breach News
- Metasploit
- mongodb-security
- Nessus Explorer
- Network Penetration Testing
- Network Penetration Testing Tools
- Network Pentest Tools
- Network Security
- Network Security Assessment
- Network Security Best Practices
- Network Security Threats
- News
- OAuth
- OAuth Security
- OAuth2.0 Misconfiguration
- Offensive security
- OWASP
- OWASP Top 10
- OWASP Top 10 Web Application Security Risks
- password recover vulnerabilties
- pen-test reports
- Penetration Test Cost
- Penetration Testing
- Penetration Testing comapnies
- Penetration Testing companies
- Penetration Testing Tools
- Phishing
- Process for Network pentesting
- Prototype Pollution
- Purple Team
- Python Application
- Ransomware Attack
- RCE
- red team
- red team vs blue team
- Remote Code Execution
- Research
- SecureLayer7 Lab
- SecureLayer7 Services
- Security Advisory
- Serialization
- Server-Side Request Forgery
- small business
- smart contract audit
- Social Engineering Attacks
- Software Security
- SQL Injection
- Supply Chain
- Telehealth
- Telehealth Services
- Tools
- top cloud security penetration testing companies
- vbulletin security
- Vulnerability
- Web Application Penetration Testing
- Web Application Security
- Web3 Penetration Testing
- Webinar
- Website Penetration Testing
- Website Security
- Windows Application Penetration Testing
- WordPress Vulnerability Àssessment
- Working with Securelayer7
Sandeep Kamble October 20, 2016July 17, 2016
We were working on Firefox browser automation for opening some of the URL for the malware analysis. We used the combination of python and selenium to […]
Sandeep Kamble July 17, 2016February 25, 2016
RedHat released Patch for CVE-2015-7547 glibc: getaddrinfo stack-based buffer overflow. A stack-based buffer overflow was found in the way the libresolv library performed dual A/AAAA DNS queries. A […]
Sandeep Kamble February 25, 2016December 14, 2015
The Joomla team just released a new Joomla version 3.4.6 to fix serious vulnerability, i.e. remote code execution. Directly from the Joomla announcement: Browser information is not […]
Sandeep Kamble December 14, 2015November 5, 2015
vBulletin on 03 Nov 2015 released security patches. The vBulletin 5.1.4 to 5.1.9 is vulnerable to PHP Object injection, where attacker can take control of the […]
Sandeep Kamble November 5, 2015October 26, 2015
It pleases us to announce the release of our new tool that we create in order to detect SQL injection vulnerability in the affected versions of […]
Amit Kumar October 26, 2015July 15, 2015
During my regular penetration testing job, I unravelled an interesting vulnerability of Unauthenticated File Upload in Oracle E-business Suite 0-day vulnerability. This particular Upload Bug can be […]
Sandeep Kamble July 15, 2015March 27, 2015
Today was another day at work for SecureLayer7 to recover our client’s defaced website. And bang!! I think I hit upon a nasty vulnerability of a […]
Sandeep Kamble March 27, 2015January 29, 2015
CVE-2015-0235 Ghost (glibc gethostbyname buffer overflow) Vulnerability is serious cause for all Linux servers. In effect, this vulnerability is leveraged to execute remote end code execution […]
Sandeep Kamble January 29, 2015