SecureLayer7 - Offensive Security, API Scanner & Attack Surface Management - Page 35 of 59

February 27, 2023

Windows management instrumentation vulnerability exploitation for Local Privilege Escalation

Published by Srivani Reddy at February 27, 2023

How to Exploit the Windows WMI Service Isolation Vulnerability for Local Privilege Escalation

If you’re interested in security and exploring vulnerabilities, you may have heard of the Windows WMI (Windows Management Instrumentation) Service Isolation Vulnerability. This vulnerability can be […]

February 27, 2023

Published by Piyush Paliwal at February 27, 2023

A Road from Dependency Confusion to RCE

Dependency confusion vulnerability was found in early 2021 by Alex Birsan and helped hackers to gain RCE on some of the biggest tech giants like Apple, […]

February 17, 2023

Published by Srivani Reddy at February 17, 2023

What Is API Penetration Testing? – A Beginner’s Guide

API penetration testing is a crucial security assessment performed by external experts to uncover potential weaknesses in API implementations. This process involves examining various aspects, including […]

February 16, 2023

Published by Srivani Reddy at February 16, 2023

What Is Website Penetration Testing?

Modern-era cybercriminals constantly push their boundaries and attack strategies to target businesses, governmental agencies, and other targets across all sectors and geographical locations. New reports of […]

February 10, 2023

Published by Srivani Reddy at February 10, 2023

Insecure Deserialization in Java Applications

In this blog, we will delve into the topic of Insecure Deserialization in Java Applications. To understand this vulnerability, we need to first comprehend what serialization […]

February 10, 2023

Published by Srivani Reddy at February 10, 2023

How Organizations Should Prepare for Penetration Testing

If you want to perform a penetration test on your digital infrastructure, you, your developer, the infrastructure team, and your program management staff must be ready. […]

February 10, 2023

Published by Srivani Reddy at February 10, 2023

Getting Your Phishing Gear Ready With GoPhish

Following the long tradition of explaining the basics, before moving forward with the setup of GoPhish, let us first understand what exactly phishing is. Phishing is […]

February 9, 2023

Published by Srivani Reddy at February 9, 2023

What Penetration Testing Tool Combines Known Scanning Techniques and Exploits

Penetration testing is an essential element for securing digital assets. Penetration testing involves the required tools and techniques as per the different methodologies such as Grey […]

February 9, 2023

Insecure deserialization attack in python application

Published by Srivani Reddy at February 9, 2023

Insecure Deserialization Attacks with Python Pickle Module

The two words Insecure Deserialization – put together might sound harmless, but they could be a potential nightmare for Python application developers. An insecure deserialization attack […]