Vulnerabilities Related to SAML [Security Assertion Markup Language] – Part 1
In this blog, we are going to discuss about what is the SAML (Security Assertion Markup Language) and how it works as well as we…
Security Advisory – Typosquatting
There are multiple cases of redirect which are due to typing mistake (typos) from the users which leads to the threat of getting infected with…
The Art of Communication, Interpretation & Validation: ChatBots
“Hello Alexa, may I have a strategy to test you? “ What is ChatBot? A computer program designed to simulate conversation with human users…
Blockchain Security – Part 1
Blockchain is both a strength and a concern. Know basics of blockchain and blockchain security security practices to make it as secure as possible. Blockchain…
Web Services Security Testing
At present, the web services have turned into an integral portion of the both mobile and web applications. Because the many people are using the…
Introduction to Internet of Things (IoT)
Introduction to Internet of Things (IoT) and IoT Security Challenges Information security, often referred to as InfoSec, is a set of strategies to protect sensitive…
Case Study – New way to Exploit Java Deserialization Vulnerability
Introduction In this case study, we will not focus on how serialization vulnerabilities and how they work because there are plenty of articles on this…
Thick Client Penetration Testing – Exploiting JAVA Deserialization Vulnerability for Remote Code Execution
Thick Client? What do you mean by that? Thick client is the kind of application which is installed on the client side and major of…
What Makes Penetration Testing Impactful – Post Exploitation
As a penetration tester, we often come across this riddle – What Makes Penetration Testing Really Impactful. As per penetration testing methodology – we identify…
Categories
- Android Security (17)
- Authentication & Authorization (22)
- Blockchain Security (1)
- Bug Bounty (1)
- BYOD (5)
- Case Study (28)
- Chatbot Security (1)
- Cloud Security (13)
- Containerization Security (1)
- Corporate Training (6)
- Cyber Attack (31)
- Data Breaches (35)
- Data Leakage (27)
- Data Privacy (29)
- Email Phishing (8)
- Encryption & Cryptography (14)
- Ethical Hacking (19)
- General (30)
- Governance Risk & Compliance (7)
- iOS Security (2)
- IOT Security (7)
- Java Security (2)
- Mobile Application Security (18)
- Mobile Device Management (10)
- Network Pentesting (9)
- News (48)
- Password Security (9)
- Past Events (6)
- Patch Management (3)
- Ransomware Attack (14)
- Reverse Engineering (3)
- Secure SDLC (5)
- Security Advisory (31)
- Security Best Practices (40)
- Security Hardening (38)
- Social Engineering Attack (10)
- Social Networking Security (5)
- Source Code Review (2)
- SPAM (2)
- Student Oriented Courses (2)
- Thick Client Penetration Testing (3)
- Unix/Linux Security (1)
- Upcoming Events (1)
- Viruses & Malware (15)
- VoIP Penetration Testing (4)
- Vulnerability Disclosure (21)
- Web Application Security (34)
- Windows Mobile Security (1)
- Zero Day Attack (7)