Photo by Christopher Skor on Unsplash

Time for the U.S. to Strike Back?

SolarWinds could be the start of a U.S.-Russia cyberwar


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  software,  vulnerability,  hacking,  application,  risk

Here you can find experts' opinions about the SolarWinds attack and some suggestions that could...



Photo by Cristofer Jeschke on Unsplash

And Don't Forget ISO/IEC 30111

Guidelines for the vulnerability handling processes


Author: Felipe Ruiz

Category: politics

Tags: cybersecurity,  standard,  vulnerability,  information,  company,  challenge

This post is related to vulnerability handling processes (ISO/IEC 30111), complementing the...



Photo by Keagan Henman on Unsplash

Don't Be Ignorant of ISO/IEC 29147

Guidelines for the vulnerability disclosure processes


Author: Felipe Ruiz

Category: politics

Tags: cybersecurity,  standard,  vulnerability,  information,  company,  challenge

Would you like to get a clearer idea about vulnerability disclosure? Start with reading this...



Photo by Shannon Litt on Unsplash

Sudo Heap Overflow CVE-2021-3156

Replicating CVE-2021-3156 with AFL


Author: Andres Roldan

Category: attacks

Tags: fuzzing,  vulnerability,  hacking,  exploit,  discovery

In this article we will be able to reproduce the bug described on CVE-2021-3156 using fuzzing.



Photo by Jono Hirst on Unsplash

Thoughtless Vulnerability Reporting

The Colombian Foreign Ministry faced a big trouble


Author: Felipe Ruiz

Category: opinions

Tags: cybersecurity,  vulnerability,  information,  web,  risk,  standard

Here I give you an overview of the recent Colombian Foreign Ministry's security problem and the...



Photo by Daniel Joshua on Unsplash

SolarWinds Supply Chain Attack

A concise summary of the SolarWinds security fiasco


Author: Felipe Ruiz

Category: attacks

Tags: cybersecurity,  software,  vulnerability,  hacking,  application,  discovery

This post outlines the SolarWinds supply chain attack that has affected multiple companies and...



Photo by Guido Hofmann on Unsplash

Babuk Locker for the 2021

The first ransomware (as a gift) for this new year


Author: Felipe Ruiz

Category: attacks

Tags: software,  security,  vulnerability,  hacking,  mistake

Here's a post dedicated to the new form of ransomware, Babuk Locker. I mention its encryption...



Photo by Daniel McCullough on Unsplash

Interview With Safety Detectives

Mauricio Gomez talking about Fluid Attacks


Author: Felipe Ruiz

Category: interview

Tags: security,  cybersecurity,  interview,  red-team,  vulnerability,  ethical-hacking

Mauricio Gomez, a co-founder of Fluid Attacks, recently had an interview with Aviva Zacks of...



Photo by Keagan Henman on Unsplash

Exploiting MiTeC NetScanner

Tricky SEH exploit


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnerability,  training,  exploit

This post will show how to build our version of an exploit for NetScanner 4.0.0.0, which was...



Photo by Pierre Binet on Unsplash

Vulnserver Reverse Engineering

The devil is in the details


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnserver,  training,  vulnerability,  exploit

This post will show how use reverse engineering techniques and tools to find vulnerabilities on...



Photo by Tomas Sobek on Unsplash

Exploiting QuickZip 4.x

Exploit-Fu


Author: Andres Roldan

Category: attacks

Tags: osce,  vulnerability,  training,  exploit

This post will show how to build our version of an exploit for QuickZip 4.x SEH overwrite.



Photo by visuals on Unsplash

Online Voting for a New President?

The trouble with OmniBallot and other voting platforms


Author: Felipe Ruiz

Category: politics

Tags: security,  cybersecurity,  software,  web,  vulnerability,  risk

In this post, we show you the exposed vulnerabilities of one of the many online voting options...



1 2 3 4 >

OWASP logo

Corporate member of The OWASP Foundation

Clutch Review

Copyright © 2021 Fluid Attacks, We hack your software. All rights reserved.

Service status - Terms of Use - Privacy Policy - Cookie Policy