Open-source Intelligence

Have you ever thought that the Amazon AWS access credentials of your company can be found in GitHub? Assume that, your company is relying on amazon web service and GitHub and the web application server […]

Sensitive Files/Configuration Enumeration on Github

Version Control System: Version Control System (VCS) is a software that helps software developers to work together and maintain a complete history of their work. Listed below are the functions of a VCS:1. Allows developers […]

Remote Code Execution Vulnerability in Adobe Flash Player

Adobe Flash Player is prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause […]

New Attack “XSSJacking” Combines Clickjacking, Pastejacking, and Self-XSS

XSSJacking is a new web-based attack that combines three other techniques  — Clickjacking, Pastejacking, and Self-XSS — to steal data from users. XSSJacking can help attackers reach sensitive information for which they would normally need a […]

A Week at Fintech SuperCharger 2.0

Supercharger, what a great way to begin our acceleration! Being part of Supercharger can fuel Entersoft to fulfil the mission to be the best in application security. Entersoft is well-positioned to meet this goal by being […]

Does a connected world make the underlying infrastructure a sitting duck for cyber criminals?

Smart cities offer infinite possibilities, promising smoother operations for organizations, ease- of-access for citizens, efficient energy consumption and seamless connectivity. But, are things as rosy as they seem? On 23rd December last year, a meticulously […]