by Bill Sempf
3. May 2020 07:19
Really awesome article on automating application scanning with OWASP ZAP:
https://www.zaproxy.org/blog/2020-04-09-automate-security-testing-with-zap-and-github-actions/
Interesting model on how Chrome extensions can be used for man-in-the-middle attacks.
https://github.com/mandatoryprogrammer/cursedchrome
DLL Hijacking is one of those thick-client attacks that everyone dismisses, but they shouldn't. This is why:
https://itm4n.github.io/windows-dll-hijacking-clarified/
Another information disclosure vulnerability - this time through the Referrer header.
https://www.theregister.co.uk/2020/04/30/email_http_leakage/
That's the news folks. Hope everyone is healthy!
b94db0ac-2b32-47e3-b562-b79fffc05180|0|.0|96d5b379-7e1d-4dac-a6ba-1e50db561b04
Tags:
Subscribe