PinnedAmir ShakedYou Build It, You Own ItDo you remember that retrospective where a customer reported a bug, and the discussion was around whose fault it was? QA, Engineering, a…5 min read·Nov 8, 2022----
PinnedAmir ShakedinPerimeterXPropagating phishing via Slack webhooks“Are slack webhooks a secret or not?”3 min read·Jan 13, 2022--1--1
Amir ShakedStrategic Approach to FinOpsIn the competitive landscape of SaaS, managing the Cost of Sales (CoS) or Cost of Goods Sold (COGS) is pivotal for sustaining healthy…2 min read·Feb 26, 2024----
Amir ShakedExposed Repository: Fixing the Accidental Public GitHub RepoTL;DR The open-source GitHub App https://github.com/PerimeterX/gitapp_alert_on_public2 min read·Nov 1, 2022----
Amir ShakedJust Ask — Questions for ManagersManaging people and projects encompasses a lot of different moving parts. An approach I like focusing on is the one focusing on three…4 min read·Oct 5, 2022----
Amir ShakedinPerimeterXThe Cookies ParasiteThe story of a phishing and malware campagin, overcomming MFA and taking over accounts.5 min read·Jan 27, 2022----
Amir ShakedinPerimeterXExfiltrating User’s Private Data Using Google Analytics to Bypass CSPContent Security Policy (CSP) is a useful tool for protecting web applications against client-side vulnerabilities and Magecart attacks…4 min read·Jun 17, 2020--2--2
Amir ShakedinPerimeterXHow to Create a Learning Culture using DebriefsAt PerimeterX we keep a SaaS B2B service that handles high throughput of requests, at a minimal RTT, and very strict SLA. We pride…3 min read·May 28, 2020----
Amir ShakedinPerimeterXDeobfuscating Caesar+tl;dr: We analyze an obfuscation tool used in Magecart skimming kits and demonstrate how you can use this knowledge to deobfuscate common…8 min read·Apr 23, 2020----
Amir ShakedinPerimeterXFighting Fraud in the TrenchesThe famed bank robber Willie Sutton once said “I rob banks because that’s where the money is.” These days, botnet operators would say the…3 min read·Jul 30, 2018----