PinnedAmir ShakedYou Build It, You Own ItDo you remember that retrospective where a customer reported a bug, and the discussion was around whose fault it was? QA, Engineering, a…Nov 8, 2022Nov 8, 2022
PinnedAmir ShakedinPerimeterXPropagating phishing via Slack webhooks“Are slack webhooks a secret or not?”Jan 13, 20221Jan 13, 20221
Amir ShakedStrategic Approach to FinOpsIn the competitive landscape of SaaS, managing the Cost of Sales (CoS) or Cost of Goods Sold (COGS) is pivotal for sustaining healthy…Feb 26Feb 26
Amir ShakedExposed Repository: Fixing the Accidental Public GitHub RepoTL;DR The open-source GitHub App https://github.com/PerimeterX/gitapp_alert_on_publicNov 1, 2022Nov 1, 2022
Amir ShakedJust Ask — Questions for ManagersManaging people and projects encompasses a lot of different moving parts. An approach I like focusing on is the one focusing on three…Oct 5, 2022Oct 5, 2022
Amir ShakedinPerimeterXThe Cookies ParasiteThe story of a phishing and malware campagin, overcomming MFA and taking over accounts.Jan 27, 2022Jan 27, 2022
Amir ShakedinPerimeterXExfiltrating User’s Private Data Using Google Analytics to Bypass CSPContent Security Policy (CSP) is a useful tool for protecting web applications against client-side vulnerabilities and Magecart attacks…Jun 17, 20202Jun 17, 20202
Amir ShakedinPerimeterXHow to Create a Learning Culture using DebriefsAt PerimeterX we keep a SaaS B2B service that handles high throughput of requests, at a minimal RTT, and very strict SLA. We pride…May 28, 2020May 28, 2020
Amir ShakedinPerimeterXDeobfuscating Caesar+tl;dr: We analyze an obfuscation tool used in Magecart skimming kits and demonstrate how you can use this knowledge to deobfuscate common…Apr 23, 2020Apr 23, 2020
Amir ShakedinPerimeterXFighting Fraud in the TrenchesThe famed bank robber Willie Sutton once said “I rob banks because that’s where the money is.” These days, botnet operators would say the…Jul 30, 2018Jul 30, 2018
