All Posts

During a recent pentest, we exploited an insecure PDF generator to trigger SSRF and access AWS instance metadata. PDF generators often allow risky features like JavaScript by default, making them an overlooked attack surface.

During a recent penetration test, we uncovered a critical insecure deserialization vulnerability hidden in a client’s production application. What started as a suspicious base64 string quickly unfolded into serialized Java objects, ysoserial payloads, and a proof-of-exploitation via DNS callbacks. In this post, we share the story behind the discovery, explain the risks of insecure deserialization, and highlight how a simple fix helped secure a vulnerable authentication endpoi

Hacking with pickles Intro In this post, I want to share an interesting vulnerability we've discovered during a penetration test on a...

How Can A Lack Of Environment Separation Led Our Red Team to Remote Code Execution

Application Security Services by Cybenari In a world where applications power nearly every aspect of business, securing them is no longer...

Red Team Services by Cybenari Cyber threats today don’t just target systems—they test people, processes, and technology all at once....

Penetration Testing Services by Cybenari Penetration testing is a proactive cybersecurity practice that simulates real-world cyberattacks...

<p>TL;DR I deployed canary tokens in various public places on the Internet, logged all access attempts, and discovered intriguing patterns on credential discovery and attack methodologies of threat actors. Canary Tokens Primer Canary tokens are a type of digital tripwire designed to detect unauthorized access or activity within a system. They work by embedding seemingly [&hellip;]</p>

In the bustling city of Philadelphia during the 18th century, fire was a constant and terrifying threat. Wooden structures, open flames, and a lack of organized firefighting resources made the city vulnerable to devastating blazes. It was in this environment that Benjamin Franklin, a man of foresight and innovation, took action. In 1736, Franklin observed

Google's Threat Analysis Group (TAG) just released a very interesting analysis of the offensive cyber activities between Israel, Iran and Hamas-Linked groups. The research covers offensive activities both leading to Oct 7th and after Oct 7th. In a recent in-depth analysis by Google&#8217;s Threat Analysis Group (TAG), the intricate web of cyber operations involving Israel, [&hellip;]

<p>Your organization is a castle, and in this modern age, cyber threats are the besieging army at your gates. The ladders are up, the catapults are drawn back, and a breach is only a matter of time. Sounds dramatic? Maybe, but the world of cybersecurity is a high-stakes game that commands the same level of [&hellip;]</p>

<p>In recent years, the world of cybersecurity has witnessed a dramatic rise in the sophistication and maturity of bug bounty programs. With tech giants and startups alike offering enticing rewards to those who can discover vulnerabilities in their systems, a new generation of security researchers and bug hunters has emerged. But how has this rise [&hellip;]</p>

In the realm of cybersecurity, terms like &#8220;Red Team Operations&#8220;Penetration Testing&#8221; are often thrown around interchangeably. However, while both are essential components of a comprehensive security strategy, they serve distinct purposes and employ different methodologies. Let&#8217;s dive deep into the nuances of these two security assessments and understand their unique roles in safeguarding

<p>Introduction In the digital age, where software applications are at the heart of daily activities, ensuring their security is of paramount importance. Secure coding practices are the foundation of building software that can withstand evolving cyber threats. In this blog post, we will delve into the fundamentals of secure coding and highlight essential best practices [&hellip;]</p>

The digital universe is vast, intricate, and continually evolving. To safeguard this cosmos, penetration testing stands as a sentinel, revealing vulnerabilities lurking in the shadows. Among its myriad forms, Black Box and White Box penetration tests emerge as contrasting yet equally significant strategies with pros and cons for each type of test. Grasping their nuances

<p>For those diving deep into cybersecurity and penetration testing, understanding the complexities and nuances of different vulnerabilities is crucial. One such vulnerability that&#8217;s seen a rise in prominence due to the widespread adoption of microservices is the Server-Side Request Forgery (SSRF). Let&#8217;s dive into the specifics of SSRF and discuss how to protect against it. [&hellip;]</p>

<p>Introduction As the internet evolves, so does the complexity of ensuring secure access and user authentication. Two widely-adopted standards that have come to the forefront are OAuth and OpenID Connect (OIDC). However, as with all technologies, they are not immune to vulnerabilities. This guide will delve into what these standards are, common security pitfalls associated [&hellip;]</p>

<p>The Problem Over the last few years more and more R&amp;D teams have started to abandon the traditional method of using 3rd party vendors, which required them to install and maintain their own instances of 3rd party’s solutions. Instead, teams started to adopt the new approach in which “Everything is a SaaS”. For example, nowdays [&hellip;]</p>

<p>Supervisory Control and Data Acquisition (SCADA) and Industrial Control Systems (ICS) play a critical role in managing and controlling industrial processes and critical infrastructure. However, their increasing connectivity to the internet and other networks has made them vulnerable to cyber threats. Securing SCADA and ICS environments presents unique challenges that demand a tailored approach to [&hellip;]</p>

<p>In the dynamic and ever-evolving landscape of cybersecurity, proactive measures are essential to safeguard organizations from potential threats. Threat modeling is a powerful technique that allows businesses to anticipate,and squash security bugs early before the cost of squashing them gets too big. In this blog post, we will explore the significance of conducting threat modeling [&hellip;]</p>