What is Server-Side Request Forgery? A Server-Side Request Forgery attack or SSRF is an attack where a malicious user could abuse the functionality on a server to read or update internal resources. It is in the same class of vulnerabilities as an RFI (Remote File Inclusion) or LFI (Local File Inclusion). Meaning its’ exploit is
Read More
There has been a whopping increase in supply chain attacks aimed at upstream open-source libraries and software components. Interestingly, despite the risk, the trend in the industry shows a strong growth in the supply and demand of open-source software. The most recent exploit on the Java logging library (log4j) has shaken the IT industry due
Read More
Written By: Moe Askari The Web Application Penetration Testing Course is a self-paced training program that teaches you all the advanced skills you’ll need to conduct a complete and professional penetration test on latest web applications technologies. Marc Andreessen, Silicon Valley investor, postulated in 2011 that software is eating the world. His thesis could not
Read More