Published inInfoSec Write-upsJavaScript prototype pollution: practice of finding and exploitationIf you follow the reports of researchers who participate in bug bounty programs, you probably know about the category of JavaScript…Apr 15, 20211Apr 15, 20211
Published inInfoSec Write-upsGraphQL Voyager as a tool for security testingYou are facing GraphQL API and want to test its security. But introspection query gives you huge unreadable JSON, web application uses…Apr 4, 20191Apr 4, 20191