All Stories

We Hacked Larksuite For 1 month and Here is what we found

We Hacked Larksuite For 1 month and Here is what we found

Almost a year back in March 2020 shuffling our private invites stock to crash into a program worthy of our time and excitement. In a while, we stumbled upon a...

Snapsec Team Snapsec Team
04 Sep 2022
How did we Found Log4shell on Agorapulse

How did we Found Log4shell on Agorapulse

Log4j is a logging framework for Java applications. It is a popular choice for developers looking for a simple and flexible logging solution. However, in the past Log4j has been...

Snapsec Team Snapsec Team
01 Sep 2022
Security Simplified - SQL Injection

Security Simplified - SQL Injection

What is SQL Injection SQL injection is a web security vulnerability that allows an attacker to interfere with the queries that an application makes to its database. It generally allows...

Mubashir Paray Mubashir Paray
25 Jun 2022
Security Simplified - Reflected XSS

Security Simplified - Reflected XSS

Cross-site scripting (also known as XSS) is a web security vulnerability that allows an attacker to compromise the interactions that users have with a vulnerable application, Reflected XSS arises when...

Imran Parray Imran Parray
31 May 2022
Security Simplified - Learn How To Find, Exploit and Mitigate Web Vulnerabilites.

Security Simplified - Learn How To Find, Exploit and Mitigate Web Vulnerabilites.

During our subtle technical experience of 7 years in Application security Industry we have often noticed that majority of the people who are into this space know how to exploit...

Imran Parray Imran Parray
30 May 2022
10 reasons your Orginisation needs a penetration testing

10 reasons your Orginisation needs a penetration testing

A penetration test, colloquially known as a pen test or ethical hacking, is an authorized simulated cyberattack on a computer system, performed to evaluate the security of the system. The...

Imran Parray Imran Parray
16 Apr 2022