Open-source Intelligence

Have you ever thought that the Amazon AWS access credentials of your company can be found in GitHub? Assume that, your company is relying on amazon web service and GitHub and the web application server […]

Sensitive Files/Configuration Enumeration on Github

Version Control System: Version Control System (VCS) is a software that helps software developers to work together and maintain a complete history of their work. Listed below are the functions of a VCS:1. Allows developers […]

Misconfigured AWS S3 Bucket Enumeration

Amazon S3 is easy-to-use object storage with a simple web service interface that you can use to store and retrieve any amount of data from anywhere on the web. Amazon S3 also allows you to […]

24 Hours, 5 Hackers – 7 Products Secured!

Entersoft hosted the Brisbane Hackfest earlier this month, as a practical, ethical hacking event to test digital assets of participating companies for vulnerabilities and fix them immediately with the help of our expert cybersecurity team. […]

Addressing RBI compliance requirements for banks & NBFCs

Segasec and Entersoft to strengthen their partnership in India Tel Aviv, February 13, 2019 – India is among the top four nations targeted by phishing attacks according to a recent research. Consequently, the Reserve Bank of India […]

Live Hack Demo at Bengaluru Tech Summit ft. Ankit Fadia

Entersoft Team demonstrated a live cyber attack on an Android phone in Bengaluru Tech Summit as a part of Entersoft’s flagship Hackfest event. The hack was followed by a Q&A session with Ankit Fadia. About the Hack Brief on Android OS: […]

Hacked and Secured! – The Hong Kong FinTech HackFest

Cyber security in FinTech is a growing concern, with no markets more directly impacted by its rise than banks, payments and Blockchain. Data from banks and other financial organisations is a premium target for hackers, […]

New Attack “XSSJacking” Combines Clickjacking, Pastejacking, and Self-XSS

XSSJacking is a new web-based attack that combines three other techniques  — Clickjacking, Pastejacking, and Self-XSS — to steal data from users. XSSJacking can help attackers reach sensitive information for which they would normally need a […]