Home
Company
Publications
Trainings
Blog
Welcome!
Agarri is small company dedicated to the offensive aspects of information security
Recently published vulnerabilities
[+]
Adobe Reader: Multiple memory corruptions during XSLT processing (
APSB 17-11
)
Firefox: Multiple UAF during XSLT processing (
MFSA 2017-10
)
Revive Adserver: Arbitrary PHP deserialization (
REVIVE-SA-2017-001
)
Adobe Reader: Multiple memory corruptions during XSLT processing (
APSB 17-01
)
Firefox: UAF during XSLT processing (
MFSA 2017-01
)
Upcoming "Burp Suite Pro" trainings
[+]
Hack In The Box
Amsterdam, Netherlands (May 6, 2019 - May 8, 2019)
NorthSec
Montreal, Canada (May 13, 2019 - May 15, 2019) → SOLD-OUT
Latest tweets
[+]
RT
@jeremycorbyn
: When politicians resort to blaming immigrants, you know they've run out of ideas.
https://t.co/LqYdjOzOJa
Sun Nov 17 10:08:20 2019
#Quizz
#OPSEC
How many people can you identify on this picture?🤣
https://t.co/vlzpyl1nH5
Sun Nov 17 08:58:07 2019
Submit a XSS validation bypass in WP, wait 18 months, get $350
https://t.co/qcob3sq5eg
Sun Nov 17 08:38:42 2019
RT
@SHA2017Camp
: ;-) ->
@mch2021
https://t.co/Ca5QhsHnbh
Sat Nov 16 16:29:57 2019
RT
@pagedout_zine
: Paged Out!
#2
https://t.co/o4CGqi4T1s
Thanks to all the authors and the institute! Enjoy!
Fri Nov 15 17:24:19 2019
Recent talks
[+]
Nearly generic fuzzing of XML-based formats
Nullcon
(March 2017 - Goa - IN -
slides
-
video
)
Server-side browsing considered harmful
Hackfest
(November 2015 - CA -
video (FR)
)
Hack in Paris
(June 2015 - FR)
HackPra Allstars - OWASP AppSec EU
(May 2015 - NL -
slides
-
video
)
Hunting for top bounties
OWASP CZ
(December 2014 - CZ)
ZeroNights
(November 2014 - RU -
slides
)
Hacktivity
(October 2014 - HU -
video
)
Recent blog posts
[+]
Back to blogging?
24/01/2019 15h33
Exploiting a Blind XSS using Burp Suite
04/04/2017 22h55
Deserialization in Perl v5.8
06/02/2016 20h30
AMF parsing and XXE
17/12/2015 19h16
Bypassing blacklists based on IPy
15/10/2014 12h04
webmaster@agarri.fr
Copyright 2010-2019 Agarri
