Home
Company
Publications
Trainings
Blog
Welcome!
Agarri is small company dedicated to the offensive aspects of information security
Recently published vulnerabilities
[+]
Adobe Reader: Multiple memory corruptions during XSLT processing (
APSB 17-11
)
Firefox: Multiple UAF during XSLT processing (
MFSA 2017-10
)
Revive Adserver: Arbitrary PHP deserialization (
REVIVE-SA-2017-001
)
Adobe Reader: Multiple memory corruptions during XSLT processing (
APSB 17-01
)
Firefox: UAF during XSLT processing (
MFSA 2017-01
)
Upcoming "Burp Suite Pro" trainings
[+]
Hack In The Box
Amsterdam, Netherlands (May 6, 2019 - May 8, 2019)
NorthSec
Montreal, Canada (May 13, 2019 - May 15, 2019) → SOLD-OUT
Latest tweets
[+]
@Serianox_
@herrjemand
A perfect target format for AFL! And I can easily imagine some security-sensitive contexts using it ;-)
Sun Jun 16 17:54:35 2019
@Serianox_
Which target?
Sun Jun 16 15:23:15 2019
RT
@jilles_com
: ORAL B Lockpicker
https://t.co/IKz9oJKtOu
Sun Jun 16 13:24:55 2019
RT
@NinjaStyle82
: Burp protip: if you want your extensions that do active scanning to be authenticated, don't forget to turn on your sessio…
Sun Jun 16 12:32:46 2019
RT
@T_Bouhafs
: Bon, À tout les abrutis haineux qui sont plus scandalisés par le fait que je puisse être journaliste que par le fait que j’…
Sun Jun 16 12:27:49 2019
Recent talks
[+]
Nearly generic fuzzing of XML-based formats
Nullcon
(March 2017 - Goa - IN -
slides
-
video
)
Server-side browsing considered harmful
Hackfest
(November 2015 - CA -
video (FR)
)
Hack in Paris
(June 2015 - FR)
HackPra Allstars - OWASP AppSec EU
(May 2015 - NL -
slides
-
video
)
Hunting for top bounties
OWASP CZ
(December 2014 - CZ)
ZeroNights
(November 2014 - RU -
slides
)
Hacktivity
(October 2014 - HU -
video
)
Recent blog posts
[+]
Back to blogging?
24/01/2019 15h33
Exploiting a Blind XSS using Burp Suite
04/04/2017 22h55
Deserialization in Perl v5.8
06/02/2016 20h30
AMF parsing and XXE
17/12/2015 19h16
Bypassing blacklists based on IPy
15/10/2014 12h04
webmaster@agarri.fr
Copyright 2010-2019 Agarri
