All Stories

Attacking CORS Misconfigurations in Modern Web Apps

Attacking CORS Misconfigurations in Modern Web Apps

If you are a developer, you already know that it’s nearly impossible to keep every resource in one place. It’s expensive (because everything has to be managed by one party)...

Adnan Shah Adnan Shah
01 Mar 2022
A Hacker Mindset

A Hacker Mindset

Whenever the word hacker strikes your ears your mind will always conjure up a picture of a hoodie wearing computer genius with multiple screens in front of him lit with...

Mubashir Paray Mubashir Paray
26 Feb 2022
Attacking Business Logic issues in Modern Web Apps

Attacking Business Logic issues in Modern Web Apps

The complexity of the modern applications has increased exponentially in the past decade. Unfortunately, this has also increased the attacker surface and hence increased the total number of vulnerabilities that...

Abdul Basit Abdul Basit
20 Jan 2022
How data breaches effects your business and brand value

How data breaches effects your business and brand value

A data breach is a revenue-killing monster that no business wants to deal with. The cost of that nightmare starts right away and doesn’t stop until the last piece of...

Imran Parray Imran Parray
18 Jan 2022
Abusing Business Logic of an Application to create backdoor in a form APP

Abusing Business Logic of an Application to create backdoor in a form APP

Working with a target having various access roles and functionalities always gives us goosebumps. This time it was a design flaw in the application logic that we reformed to create...

Imran Parray Imran Parray
01 Jan 2022
Attacking Access Control Models in Modern Web Apps

Attacking Access Control Models in Modern Web Apps

So far you may have come across various web applications where you were able to invite members with limited access to the information within the organization. Developers are able to...

Imran Parray Imran Parray
25 Sep 2021