Estimated Reading Time: 6 minutes A post exploring how to enumerate and avoid Cortex XDR ransomware files/folders and avoid getting caught
Cortex XDR Ransomware Protection, Chocolate Teapots and Inflatable Dartboards
Posted on
Category: AppSec
Froxlor v2.0.6 Remote Command Execution (CVE-2023-0315)
Posted on
Estimated Reading Time: 8 minutes Summary about Froxlor Froxlor is a web-based server management software for Linux-based operating systems. It is primarily used to manage web hosting environments and allows users to create and manage websites, email accounts, and FTP accounts. It also provides tools for monitoring server resources and managing backups. Froxlor is written in PHP and uses a…
Unveiling BugHound: a static code analysis tool based on ElasticSearch
Posted on
Estimated Reading Time: 7 minutes In the last couple of weeks, I was doing some code analysis for a couple of products, some of them were part of my daily job and the other was for research purposes. During this period, I was trying to do automation for my code analysis process to reduce the amount of work that I…
Adventures in Burp Extender Land
Posted on
Estimated Reading Time: 7 minutes Recently I was testing a mobile application and it’s interaction with an API backend. It was the first time that I had come across an application that used two different JWT tokens in the headers to authorise against the API end point. Burp is great at handling cookies, but is not so great on handling…