

Blog



Blog

Juan Aguirre

Security analyst

Juan was security analyst at Fluid Attacks from March 2017 until August 2018.

cover-another-proud-son-json (https://unsplash.com/photos/OqtafYT5kTw)

Philosophy

Juan Aguirre

•

May 4, 2017



2 min

Another proud son of JSON: Using JSON Web Token to send data

Here we introduce JSON Web Token, a simple, quick way to send secure, digitally signed data from one part to another via URL using a base64 algorithm to encode.

Read post



Philosophy

Juan Aguirre

•

May 4, 2017



2 min

Another proud son of JSON: Using JSON Web Token to send data

Here we introduce JSON Web Token, a simple, quick way to send secure, digitally signed data from one part to another via URL using a base64 algorithm to encode.

Read post



Philosophy

Juan Aguirre

•

May 4, 2017



2 min

Another proud son of JSON: Using JSON Web Token to send data

Here we introduce JSON Web Token, a simple, quick way to send secure, digitally signed data from one part to another via URL using a base64 algorithm to encode.

Read post



cover-symbolic-execution-mortals (https://unsplash.com/photos/d9ILr-dbEdg)

Attacks

Juan Aguirre

•

May 4, 2017



5 min

Symbolic execution for mortals: What it is and how it works

In this article, we intend to explain an approach to symbolic execution, which is very useful when dealing with software assessment.

Read post



Attacks

Juan Aguirre

•

May 4, 2017



5 min

Symbolic execution for mortals: What it is and how it works

In this article, we intend to explain an approach to symbolic execution, which is very useful when dealing with software assessment.

Read post



Attacks

Juan Aguirre

•

May 4, 2017



5 min

Symbolic execution for mortals: What it is and how it works

In this article, we intend to explain an approach to symbolic execution, which is very useful when dealing with software assessment.

Read post



cover-conserving-identity (https://unsplash.com/photos/G1yhU1Ej-9A)

Philosophy

Juan Aguirre

•

May 2, 2017



4 min

Conserving your identity: Using WS-Security to secure your web apps

In this article, we present a secure way to exchange information between different web services using the realms of the Web Service Federation (WSF).

Read post



Philosophy

Juan Aguirre

•

May 2, 2017



4 min

Conserving your identity: Using WS-Security to secure your web apps

In this article, we present a secure way to exchange information between different web services using the realms of the Web Service Federation (WSF).

Read post



Philosophy

Juan Aguirre

•

May 2, 2017



4 min

Conserving your identity: Using WS-Security to secure your web apps

In this article, we present a secure way to exchange information between different web services using the realms of the Web Service Federation (WSF).

Read post



cover-multiple-credentials-begone (https://unsplash.com/photos/2kH-6T6x_0I)

Philosophy

Juan Aguirre

•

April 28, 2017



4 min

Multiple credentials begone! Security issues and solutions of SSO services

Here we explain how to use SAML, a popular SSO implementation standard for logging users into applications based on their sessions.

Read post



Philosophy

Juan Aguirre

•

April 28, 2017



4 min

Multiple credentials begone! Security issues and solutions of SSO services

Here we explain how to use SAML, a popular SSO implementation standard for logging users into applications based on their sessions.

Read post



Philosophy

Juan Aguirre

•

April 28, 2017



4 min

Multiple credentials begone! Security issues and solutions of SSO services

Here we explain how to use SAML, a popular SSO implementation standard for logging users into applications based on their sessions.

Read post



cover-healthcare-clouds (https://unsplash.com/photos/DuBNA1QMpPA)

Opinions

Juan Aguirre

•

April 27, 2017



4 min

Cloud-based systems in healthcare and their issues

Cloud-based systems can be of great benefit to healthcare institutions, but they can also lead to security issues that must be handled and that we explain here.

Read post



Opinions

Juan Aguirre

•

April 27, 2017



4 min

Cloud-based systems in healthcare and their issues

Cloud-based systems can be of great benefit to healthcare institutions, but they can also lead to security issues that must be handled and that we explain here.

Read post



Opinions

Juan Aguirre

•

April 27, 2017



4 min

Cloud-based systems in healthcare and their issues

Cloud-based systems can be of great benefit to healthcare institutions, but they can also lead to security issues that must be handled and that we explain here.

Read post



cover-xss-protection (https://unsplash.com/photos/kYlYwQze5vI)

Attacks

Juan Aguirre

•

April 26, 2017



4 min

Dude, where's my XSS protection? Solving Halls of Valhalla challenge: XSS4

Web security nowadays is a matter of concern. In this article, we explain how to avoid one of the most common attacks: Cross Site Scripting (XSS).

Read post



Attacks

Juan Aguirre

•

April 26, 2017



4 min

Dude, where's my XSS protection? Solving Halls of Valhalla challenge: XSS4

Web security nowadays is a matter of concern. In this article, we explain how to avoid one of the most common attacks: Cross Site Scripting (XSS).

Read post



Attacks

Juan Aguirre

•

April 26, 2017



4 min

Dude, where's my XSS protection? Solving Halls of Valhalla challenge: XSS4

Web security nowadays is a matter of concern. In this article, we explain how to avoid one of the most common attacks: Cross Site Scripting (XSS).

Read post



cover-reversing-mortals (https://unsplash.com/photos/5siQcvSxCP8)

Attacks

Juan Aguirre

•

April 25, 2017



5 min

Reversing for mortals: Solving Yoire crackme average challenge

In this article, we provide a first approach to reverse engineering by solving a simple but educational cracking challenge using OllyDBG.

Read post



Attacks

Juan Aguirre

•

April 25, 2017



5 min

Reversing for mortals: Solving Yoire crackme average challenge

In this article, we provide a first approach to reverse engineering by solving a simple but educational cracking challenge using OllyDBG.

Read post



Attacks

Juan Aguirre

•

April 25, 2017



5 min

Reversing for mortals: Solving Yoire crackme average challenge

In this article, we provide a first approach to reverse engineering by solving a simple but educational cracking challenge using OllyDBG.

Read post



cover-stupid-neighbors-using-wep (https://unsplash.com/photos/X0EtNWqMnq8)

Attacks

Juan Aguirre

•

April 24, 2017



4 min

Stupid neighbors using WEP: Solving Yashira WEP security challenge

In this article, we explain how to crack a Wired Equivalent Privacy (WEP) algorithm by analyzing its traffic.

Read post



Attacks

Juan Aguirre

•

April 24, 2017



4 min

Stupid neighbors using WEP: Solving Yashira WEP security challenge

In this article, we explain how to crack a Wired Equivalent Privacy (WEP) algorithm by analyzing its traffic.

Read post



Attacks

Juan Aguirre

•

April 24, 2017



4 min

Stupid neighbors using WEP: Solving Yashira WEP security challenge

In this article, we explain how to crack a Wired Equivalent Privacy (WEP) algorithm by analyzing its traffic.

Read post



Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which organizations of all sizes are already enjoying.

Try for free

Contact sales

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which organizations of all sizes are already enjoying.

Try for free

Contact sales

Start your 21-day free trial

Discover the benefits of our Continuous Hacking solution, which organizations of all sizes are already enjoying.

Try for free

Contact sales

Fluid Attacks' solutions enable organizations to identify, prioritize, and remediate vulnerabilities in their software throughout the SDLC. Supported by AI, automated tools, and pentesters, Fluid Attacks accelerates companies' risk exposure mitigation and strengthens their cybersecurity posture.