Integrating Abuse Case Scenarios to Improve Authorization Testing
Introduction In many penetration testing assessments, it is common to encounter applications that support multiple user roles, such as admin, normal user, approver, and others. Consequently, testers are often provided with accounts and credentials for various roles during a grey-box assessment. During a penetration test, the focus is often on identifying technical vulnerabilities such as…
The Detection & Response Chronicles: Exploring Telegram Abuse
Adversaries utilizing popular messaging apps throughout different attack phases is nothing new. Telegram, in particular, has constantly been the subject…
Managing SIEM Log Collectors at Scale with Ansible and GitHub Actions – Part 1
A Security Operations Center (SOC) watches an organization’s IT systems for cyber threats 24/7. It quickly finds and fixes security…
Detection Engineering: Practicing Detection-as-Code – Tuning – Part 8
In Part 7, we showcased how we can leverage automation to continuously monitor the performance and trigger rate of our…
Contagious Interview Actors Now Utilize JSON Storage Services for Malware Delivery
NVISO reports a new development in the Contagious Interview campaign. The threat actors have recently resorted to utilizing legitimate JSON…
Vulnerability Management – Process Perspective
Introduction Part 2b In this post, we dive deeper into the HOW of vulnerability management. This post is dedicated to…
Patching Android ARM64 library initializers for easy Frida instrumentation and debugging
Intro During both mobile security and mobile resiliency assessments, you often end up instrumenting the application to analyze its internals.…
Something went wrong. Please refresh the page and/or try again.