Invite to discuss

Want posts & news about #application security on your wall?

Sign Up

application security

Posts
508
Experts
168
Views
156.1K
Shares
1K
Upvotes
4.5K

Posts

NewsWatcher

A non-hackers view of the Comodo Consulting CTF Application Security Challenge

I saw Boaz Shunami‍ post about a new CTF Application Security Challenge Komodo Consulting had put up. Previous years when we got close to DEF CON time, other companies have done similar. Fortinet‍ once arranged a similar hacking game / Application Security Challenge, and within days, hackers had hacked the game and the server behind so thoroughly that Fortinet‍ took it down a… Read more
5
4
Join the discussion...
Boaz Shunami
Jan, Thanks for this review :-) We are Komodo Consulting (with a K) Best, Boaz
1
NewsWatcher
Tried some more, just can't get it to return any data to either the page or the page source that I can see latest tried all kinds of union select 1,2,3,4,5--+ - it seems as soon as the AND operator is selected it throws an error, so maybe the AND operator has to be there for it to work
1
Start the discussion...
Terry Gold

Physical Security Blog. Part 1: Why the Physical Security Industry is Dysfunctional

This article is the first in a series on Physical Security that will share knowledge and many lessons that I’ve learned along the way in transforming global organizations to break out of the stagnation that permeates their industry, culture, and infrastructure to one that is aligned with principles that much of the InfoSec community already practices. Sometimes it will review basic fundame… Read more
6
Start the discussion...
Tal Arad

The UnHackbles — Surviving Infosec Professionals

Only an Italian brings a knife to an…errr..hack fight (Originally posted here). Part 1: From Thought Leaders to Insane Braniacs We have many problems here in the Cyber realm. We have small budgets. We have people clicking anything that comes by email, whether it’s a message from deceased rel… Read more
11
9
Join the discussion...
Dean Webb
Forget you! I'm an Ethical Cyber Thought Warrior that produces solutions-driven security solutions! I *only* respond to outlandish job postings with buzzword tautologies! Now pardon me as I innovate out-of-the-box disruptions ahead of time and under budget. :-)
2
1
Mitch Impey
well done ! Based on these classifications, I am currently a combo of the IR / FI , coming from a partial security manager, training for a SA position as the 3rd hat. Sounds about right to me :)
2
1
Join the discussion...
David Johnson
Welcome Gregory :)
1
Ben ferris

Subaru Starlink vulnerabilities found and patched. Remote door unlock

A researcher associated with OWASP LA bought a new Subaru 2017 with the new Starlink infotainment system and found 8 vulnerabilities, XSS, non-expiring session tokens and more, which in total would allow an attacker to craft emails or links in emails to Subaru users, which when clicked would grant the attacker access to unlock the doors of the car and more. The scary thing is that the researcher… Read more
13
Start the discussion...