This is a pop culture article about why mobile application can be insecure (from Wired) but it is we...
Read More
Portswigger published their Top 10 Hacking Techniques for 2020.
https://portswigger.net/research/top...
Read More
Microsoft has some guidance for containers using .NET
https://devblogs.microsoft.com/dotnet/staying-...
Read More
Apparently I failed to publish last week. Sorry about that.
Rolling shellcode from objects in...
Read More
Using Machine Learning to perfect SQL Injection
https://portswigger.net/daily-swig/machine-learning-...
Read More
A very Interesting list of exploitable "features" in PDFs.
https://web-in-security.blogspot.com/2021...
Read More
Breakdown of a malicious app that man-in-the-middled the Google Signin.
https://blog.usejournal.com/...
Read More
Hey, welcome back from holidays. Quite a week it has been.
Portswigger has a really goo...
Read More
So, hey, yeah, how are all of you. Clearly SolarWinds has completely overwhelmed the news this...
Read More
There is a potential new addition to DNS security, which is sorely needed.
https://blog.cloudflare.c...
Read More
Once a week or so, someone calls and asks for OWASP Top 10 testing. I have to make the call on...
Read More
An astonishingly well-written article by Google Project Zero on a vulnerability in iPhone's proximit...
Read More