Web Cache Poisoning – Through Host Header Inject ...
To understand the concept of web cache poisoning first we have to understand what web cache is and why it is being used. Then we…
Read More
Apache Struts-2 Exploited to Remote Code Execution ...
This blog is to describe my finding on a web-based application which is a very well-known vulnerability found on Apache Struts-2 RCE (Remote Code Execution)….
Read More
Vulnerabilities Related to SAML [Security Assertio ...
In this blog, we are going to discuss about what is the SAML(Security Assertion Markup Language) and how it works as well as we are…
Read More
Microsoft Zero Day – VCard Vulnerability ...
Introduction: A zero-day vulnerability has been discovered and reported in the Microsoft’s Windows operating system. Under a certain scenario it could allow a remote attacker…
Read More
Advisory | Microsoft Zero Day – Windows Task ...
Introduction A previously unknown zero-day vulnerability has been disclosed in the Microsoft’s Windows operating system that could help a local user or malicious program to…
Read More
What Makes Penetration Testing Impactful – P ...
As a penetration tester, we often come across this riddle – What Makes Penetration Testing Really Impactful. As per penetration testing methodology – we identify…
Read More
Beware Android Users – CLOAK AND DAGGER is h ...
The WORLD has still not got over with the WannaCry ransomware menace and here comes one more! People have been debating for years over Android…
Read More
Buffer Overflow Attacks ...
Introduction Buffer is a storage place in memory where data can be stored. It’s mostly bound in a conditional statements to check the value given…
Read More
Threat Advisory Report on WannaCry Ransomware (Cri ...
1. Introduction On Friday, May 12, countless organizations around the world began fending off attacks from a ransomware strain variously known as WannaCrypt, WanaDecrypt and…
Read More
Shellshock-Security Patching Aftermath ...
On September 24th 2014, a publicly disclosed vulnerability was revealed in the UNIX/Linux which we have discussed in our blog https://www.varutra.com/blog/?p=1010. Although a patch has…
Read More