ForAllSecure Blog

Filter By:
All Topics Application Security Testing Autonomous Security Bug Hunting Capture The Flag Code Coverage DevSecOps ForAllSecure Update FuzzCon TV Fuzzing Basics Fuzzing ROI Mayhem Update The Hacker Mind

Try changing the filters above or reset your search

EP 49: LoL

Robert Vamosi
·
June 22, 2022

Living off the Land (LoL) is an attack where files already on your machine, ie your operating system, are used against you. They would be undetectable, right? Kyle Hanslovan CEO of Huntress Labs joins The Hacker Mind to discuss recent LoL attacks, specifically the Microsoft Follina attack and the Kaseya ...

Read more

The Hacker Mind Podcast: Hacking Teslas

Robert Vamosi
·
June 08, 2022

With digital convenience there’s often a price. And if that means a bad actor can create a wireless key for your new Tesla, that price is pretty steep. At CanSecWest 2022, researcher Martin Herfurt announced a new tool,TeslaKee, which he hopes prevents wireless key attacks from happening. Martin joins The ...

Read more

What Is A Null Pointer Dereference Error?

Editorial Staff
·
June 01, 2022

CWE-476 Null pointer dereference A null pointer dereference is a programming error that can occur when a program attempts to deference a null pointer. This can happen when the programmer mistakenly assumes that a pointer pointing to NULL is actually pointing to a valid object. If the program dereferences the ...

Read more

What Is An Improper Input Validation Error?

Editorial Staff
·
June 01, 2022

CWE-20 Improper Imput Validation in a web application can allow an attacker to supply malicious user input that is then executed by the vulnerable web application. Improper input validation can be used to bypass security mechanisms, such as authentication and authorization controls. It can also be used to inject malicious ...

Read more

What Is An Improper Control of Dynamically Managed Services Error?

Editorial Staff
·
June 01, 2022

Dynamically managed services are a great way to reduce the administrative burden of keeping track of which servers are running which services. However, if these services are not properly controlled, it can lead to security vulnerabilities. For example, if a service is dynamically created and assigned to a server without ...

Read more

Stay Connected

Subscribe to Updates

By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement.