Agarri : Sécurité informatique offensive

Vulnérabiliés récentes [+]

Adobe Reader : Multiples corruptions lors d'un traitement XSLT (APSB 17-11)
Firefox: Multiples UAF lors d'un traitement XSLT (MFSA 2017-10)
Revive Adserver : Désérialisation PHP arbitraire (REVIVE-SA-2017-001)
Adobe Reader : Multiples corruptions lors d'un traitement XSLT (APSB 17-01)
Firefox : UAF lors d'un traitement XSLT (MFSA 2017-01)

@0xw2w @Burp_Suite Never had this exact situation and too busy to replicate right now. Good luck!
1. Mon Dec 16 08:38:32 2019
@NathOnSecurity Glad it solved your problem!
1. Mon Dec 16 08:37:06 2019
@NathOnSecurity Use the "HTTP Mock" extension https://t.co/32MWkXgtvE
1. Mon Dec 16 07:42:39 2019
@0xw2w @Burp_Suite Be sure to have Logger++ at the bottom of your list of extensions!!
1. Sun Dec 15 22:41:11 2019
@0xw2w @Burp_Suite Hard to debug remotely. Try to understand what is exactly going on, possibly using "Session trac… https://t.co/DWAPapNACu
1. Sun Dec 15 22:40:42 2019

Nearly generic fuzzing of XML-based formats
1. Nullcon (mars 2017 - Goa - IN - slides - video)
Server-side browsing considered harmful
1. Hackfest (novembre 2015 - CA - video (FR))
2. Hack in Paris (juin 2015 - FR)
3. HackPra Allstars - OWASP AppSec EU (Mai 2015 - NL - slides - video)
Hunting for top bounties
1. OWASP CZ (décembre 2014 - CZ)
2. ZeroNights (novembre 2014 - RU - slides)
3. Hacktivity (octobre 2014 - HU - video)