This post provides a nice little exploit chain I came up with in a recent penetration test. Application Overview The application I tested is providing a client to create workflows which communicates via REST API with the application server. This requires specific rights so not all users are able to create own…

Evading URL Filters so links reach the user’s inbox The majority of cyber attacks against corporate as well as private users nowadays start with a phishing email containing either an attachment or a link to a malicious document. Attackers increasingly strive to smuggle their payloads through existing security services as…

A post from the folks at Blumira caught my attention as they state that web sockets are another attack vector for the infamous log4j vulnerability CVE-2021-44228 whereby it extends the attack surface to even internal systems. While their attack works as described, I was wondering if there’s more to it…