Learning center & Blog

Security articles and how-to guides, events and other news from penetration testing and infosec

latest articles

Security research
Exploiting OGNL Injection in Apache Struts
by Ionut Popescu March 14, 2019
by Ionut Popescu March 14, 2019
Let’s understand how OGNL Injection works in Apache Struts. We’ll exemplify with two critical vulnerabilities…
Read more
Platform updates
An enhanced version of our Website Vulnerability Scanner
by Ioana Rijnetu February 13, 2019
by Ioana Rijnetu February 13, 2019
To check the security of a web application or server, you need an automated scanner…
Read more
Security research
Inside Nmap, the world’s most famous port scanner
by Satyam Singh January 8, 2019
by Satyam Singh January 8, 2019
This article is a deep dive into how Nmap works, to understand its internal structure,…
Read more
Events
Pentest report writing in 5 minutes (Defcamp 2018 talk)
by Adrian Furtuna November 12, 2018
by Adrian Furtuna November 12, 2018
Tired of writing pentest reports? Let’s automate this process and let you get back to…
Read more
Security research
Essential HTTP Headers for Securing Your Web Server
by Satyam Singh October 22, 2018
by Satyam Singh October 22, 2018
In this article, we discuss the most important HTTP headers that you should configure on…
Read more
Security research
5 Practical Scenarios for XSS Attacks
by Satyam Singh October 4, 2018
by Satyam Singh October 4, 2018
Let’s explore a couple of practical attack scenarios that can be implemented as PoCs to…
Read more

1
…
10
11
12