SecureLayer7 - Offensive Security, API Scanner & Attack Surface Management - Page 50 of 54

October 24, 2017

Open Source Application Penetration testing

Published by Sandeep Kamble at October 24, 2017

KeystoneJS Open Source Penetration Testing Report – Gratis 2017

Overview Under the Gratis Pentest 2017, we have evaluated security postures of open source applications. For Gratis 2017 we have selected KeystoneJS. In this blog, we are discussing KeystoneJS Open […]

October 17, 2017

Published by Sandeep Kamble at October 17, 2017

WPA2 Protocol Vulnerability – Intercepting Password on Wireless Device

Overview The WPA2 Protocol vulnerability allows attacker to decrypt the network traffic from the vulnerable device and it also allow to view the critical information, injecting the packets/data […]

September 20, 2017

Published by vinit patil at September 20, 2017

OWASP TOP 10: #4 | Insecure Direct Object Reference Vulnerability

tl;dr: I’m Pentester and recently I got my first pentest project and I’ve successfully executed with my senior colleague. As the application was developed to perform […]

September 15, 2017

Published by Samrat Das at September 15, 2017

Reverse Engineering 101 – With Crack-mes

Reverse Engineering is an fascinating art of playing with low level code. In this article, we will see a hands-on tutorial for patching an exe file […]

September 13, 2017

Published by Samrat Das at September 13, 2017

BlueBorne- the lethal attack to take over your devices

The latest attack Blueborne is taking over by storm , lets read about it in concise, the attack method and the details of this bug. A […]

September 5, 2017

Published by Samrat Das at September 5, 2017

Pacemakers prone to getting hacked

Recently the The FDA and Homeland Security have issued alerts about vulnerabilities in 4,65,000 pacemakers. The devices can be remotely “hacked” to increase activity or reduce […]

September 3, 2017

Published by Samrat Das at September 3, 2017

Automating Web Apps Input fuzzing via Burp Macros

Hi Readers, This article is about Burp Suite Macros which helps us in automating efforts of manual input payload fuzzing. While it may be known to […]

August 28, 2017

Published by Saurabh Banawar at August 28, 2017

OWASP Top 10 : Cross-Site Scripting #3 Bad JavaScript Imports

This blog covers Cross-Site Scripting (XSS) vulnerability from a different perspective. Generally, XSS is when the application takes user supplied JavaScript and displays it without escaping/encoding. […]

August 6, 2017

Memory Forensics and Reverse Engineering

Published by Samrat Das at August 6, 2017

Memory Forensics & Reverse Engineering : Thick Client Penetration Testing – Part 4

Static Analysis/ Reverse Engineering for Thick Clients Penetration Testing 4 Hi Readers, let’s take a look into static analysis. The advantage which thick clients offer over […]