Painting a red and blue wall

LibSSH New Vulnerability

New vulnerability on libssh CVE-2018-10933


Author: Jonathan Armas

Category: attacks

Tags: security,  bug,  libssh,  pentesting

Here, we will explain a vulnerability that allows a remote attacker to bypass authentication by...



Developers programming in an office

DevOops Writeup

How to resolve HTB DevOops


Author: Jonathan Armas

Category: attacks

Tags: security,  htb,  pwn,  web

In this article, we present how to exploit the vulnerabilities of DevOops, a Linux Hack the Box...



Cup with message in front of screen with code

Functional Fashion in JavaScript

Functional programming in JavaScript


Author: Oswaldo Parada

Category: programming

Tags: application,  functional,  javascript,  eslint

Here we talk about some first steps in functional JavaScript and recommendations for migration....



Snake checking a code

Are You Checking Types?

Static type checking with mypy


Author: Oswaldo Parada

Category: programming

Tags: application,  functional,  python,  mypy

What are the potential problems of untyped objects in Python? Here we work on the importance of...



Swiss army knive

Road to Functional Python

Functional coding in Python


Author: Oswaldo Parada

Category: programming

Tags: application,  functional,  python,  multiparadigm

Here is an intro to the essential aspects of functional programming in Python, its benefits, how...



Piece of code with a function

Why We Go Functional?

Functional vs Imperative


Author: Oswaldo Parada

Category: programming

Tags: application,  functional,  imperative,  stateless

In this blog post, we show an analysis of why it is necessary to go functional even with...



Unknown person below lights

The Treacherous POODLE

How does the SSL fallback's works


Author: Daniel Yepes

Category: attacks

Tags: ssl,  flaw,  cbc

Here we discuss the exploitation of an SSL/TLS flaw that creates a fallback on TLS usage to SSL 3.0.



Release the beast

Release the BEAST!

Understanding the BEAST


Author: Daniel Yepes

Category: attacks

Tags: tls,  cbc,  vulnerability

How does a theorized attack become practical after more than 10 years? Find out here.



Computer showing a pirate flag

My Heart Bleeds (But Not for You)

Understanding the flaw behind Heartbleed


Author: Daniel Yepes

Category: attacks

Tags: vulnerability,  bug,  openssl

Here we talk about Heartbleed, the result of a buggy implementation of the TLS protocol on...



Person holding sticky note

Pars Orationis Non Est Secura

Using parser combinators to detect flaws


Author: Rafael Ballestas

Category: attacks

Tags: detect,  injection,  scanner

Learn here how to use Python and pyparsing to parse application code in order to find SQL...



Cucumber lot

Gherkin on Steroids

How to document detailed attack vectors


Author: Rafael Ballestas

Category: documentation

Tags: documentation,  vector,  software

In this post, we work on how to use Gherkin to document attack vectors in vulnerable...



Rusty lock

Requiem for a p455w0rD

Why passphrases are better than passwords


Author: Rafael Ballestas

Category: identity

Tags: password,  credential,  security

In this blog post, we mainly make a comparison between having weak or complicated passwords...



< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 >

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review
Service status - Terms of Use - Privacy Policy - Cookie Policy

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.