Extending Burp Suite for fun and profit – The Montoya way – Part 6 Setting up the environment + Hello WorldInspecting and tampering HTT... 2024-7-30 20:16:33 | 阅读: 20 | 收藏 | Over Security - Cybersecurity news aggregator - security.humanativaspa.it burp auditissue insertion auditresult

Extending Burp Suite for fun and profit – The Montoya way – Part 5 Setting up the environment + Hello WorldInspecting and tampering HTT... 2024-6-19 18:8:7 | 阅读: 25 | 收藏 | hn security - security.humanativaspa.it bytearray portion montoyaapi

Multiple vulnerabilities in Eclipse ThreadX “Why don’t you pick on projects your own size,quit tormenting the tin... 2024-5-28 16:27:49 | 阅读: 20 | 收藏 | hn security - security.humanativaspa.it eclipse threadx github security

Multiple vulnerabilities in RIOT OS “Where there is parsing, there are bugs.”— Dr. Silvio CesareSummary... 2024-5-7 15:31:28 | 阅读: 25 | 收藏 | Over Security - Cybersecurity news aggregator - security.humanativaspa.it riot security github ghsa

Frida on Java applications and applets in 2024 As explained in Federico‘s latest article, during a red teaming engage... 2024-3-26 16:19:58 | 阅读: 30 | 收藏 | hn security - security.humanativaspa.it applet jnlp github classtofind loader

Multiple vulnerabilities in RT-Thread RTOS “Security is in the mind of the programmer and in the mind of the desi... 2024-3-5 17:57:32 | 阅读: 55 | 收藏 | hn security - security.humanativaspa.it github maintainers overflow security

Seemposium Podcast interview The fine folks at Seemposium Sicuranext interviewed me for their new p... 2024-2-14 20:17:26 | 阅读: 15 | 收藏 | hn security - security.humanativaspa.it italian security 90s memory pleasure

Java applet + serialization in 2024! What could go wrong? Recently, during a red team engagement with my colleague Maurizio, we... 2024-2-8 21:28:18 | 阅读: 23 | 收藏 | hn security - security.humanativaspa.it burp applet proxy security serialized

A collection of weggli patterns for C/C++ vulnerability research “No one cares about the old scene people anymore, I’m sure,bunch of o... 2024-1-11 16:16:23 | 阅读: 19 | 收藏 | Over Security - Cybersecurity news aggregator - security.humanativaspa.it weggli semgrep analysis identify

DevSecCon Italy video Hi!Yesterday I spoke at DevSecCon Italy, following the invitation by... 2023-12-1 00:17:19 | 阅读: 21 | 收藏 | Over Security - Cybersecurity news aggregator - security.humanativaspa.it brida github devseccon italy

Big update to my Semgrep C/C++ ruleset “The attack surface is the vulnerability. Finding a bug there is just... 2023-11-28 14:38:50 | 阅读: 21 | 收藏 | hn security - security.humanativaspa.it semgrep raptor github sarif zephyr

OST2, Zephyr RTOS, and a bunch of CVEs “When hackers tell me it’s so hard to find bugs, I tell them to stop l... 2023-11-7 14:47:14 | 阅读: 76 | 收藏 | hn security - security.humanativaspa.it zephyr overflow security rtos

Customizing Sliver – Part 3 In this third and final post in the series about Sliver C2 I’ll provid... 2023-10-24 17:54:58 | 阅读: 49 | 收藏 | hn security - security.humanativaspa.it sliver helloworld client protobuf sliverpb

Customizing Sliver – Part 2 Hello! This is the second part of the three-part blog series explainin... 2023-10-24 17:54:46 | 阅读: 46 | 收藏 | hn security - security.humanativaspa.it sliver client grpc sliverpb

Customizing Sliver – Part 1 Lately I’ve been conducting research into open-source C2 frameworks an... 2023-10-24 17:1:28 | 阅读: 93 | 收藏 | Over Security - Cybersecurity news aggregator - security.humanativaspa.it sliver client vscode github windows

Extending Burp Suite for fun and profit – The Montoya way – Part 4 Setting up the environment + Hello WorldInspecting and tampering HTT... 2023-8-30 18:12:20 | 阅读: 19 | 收藏 | hn security - security.humanativaspa.it burp decrypted encryption montoyaapi

Extending Burp Suite for fun and profit – The Montoya way – Part 3 Setting up the environment + Hello WorldInspecting and tampering HTT... 2023-7-19 17:47:32 | 阅读: 19 | 收藏 | hn security - security.humanativaspa.it burp textmessage client payload montoyaapi

Extending Burp Suite for fun and profit – The Montoya way – Part 2 Setting up the environment + Hello World-> Inspecting and tampering... 2023-7-5 17:39:53 | 阅读: 20 | 收藏 | hn security - security.humanativaspa.it burp montoya montoyaapi httphandler

Extending Burp Suite for fun and profit – The Montoya way – Part 1 -> Setting up the environment + Hello WorldInspecting and tampering... 2023-7-5 17:39:20 | 阅读: 15 | 收藏 | hn security - security.humanativaspa.it burp montoya montoyaapi gradle python

Pentesting Xamarin Android apps: DLLs and root check bypass In this article, I’ll show how to detect and bypass some basic securit... 2023-6-13 15:38:52 | 阅读: 17 | 收藏 | hn security - security.humanativaspa.it apk assemblies apks aligned