| | Ksmbd – Exploiting CVE-2025-37947 (doyensec.com) |
| 10 points by Bogdanp 3 months ago | past |
|
| | Doyensec: Finding Vulnerabilities in SCIM (doyensec.com) |
| 1 point by tony-ds 8 months ago | past |
|
| | Fuzzing TLS certificates from their ASN.1 grammar (doyensec.com) |
| 2 points by fanf2 9 months ago | past |
|
| | Doyensec details the risks with class pollution in Ruby (doyensec.com) |
| 1 point by tony-ds on Oct 2, 2024 | past |
|
| | Using Security Engineering to Prevent Phishing – Doyensec (doyensec.com) |
| 3 points by tony-ds on Sept 19, 2024 | past | 1 comment |
|
| | Regexploit: A tool for finding DoS-able regular expressions (doyensec.com) |
| 2 points by fanf2 on Aug 18, 2024 | past |
|
| | Windows Priv Esc Vulnerability – Doyensec Research (doyensec.com) |
| 1 point by tony-ds on July 18, 2024 | past |
|
| | Doyensec – Securing Applications Against DB Race Conditions (doyensec.com) |
| 2 points by tony-ds on July 11, 2024 | past |
|
| | Exploiting Client-Side Path Traversal to Perform CSRF – Introducing CSPT2CSRF (doyensec.com) |
| 1 point by chillax on July 3, 2024 | past |
|
| | Using Client-Side Path Traversal for CSRF – Doyensec (doyensec.com) |
| 1 point by tony-ds on July 2, 2024 | past | 1 comment |
|
| | SSO IdP compromise research from Doyensec (doyensec.com) |
| 2 points by tony-ds on June 20, 2024 | past |
|
| | Summer AppSec Internship Doyensec (doyensec.com) |
| 1 point by tony-ds on May 16, 2024 | past |
|
| | Software Composition Analysis Research from Doyensec (doyensec.com) |
| 1 point by tony-ds on March 15, 2024 | past |
|
| | New Server-Side Prototype Pollution Gadgets Scanner (doyensec.com) |
| 1 point by tony-ds on Feb 27, 2024 | past | 1 comment |
|
| | PoIEx(tool) – maps code and IaC intersection from Doyensec (doyensec.com) |
| 3 points by tony-ds on Jan 30, 2024 | past | 1 comment |
|
| | Doyensec's SHVE tool now does malicious macro injection in Office docs (doyensec.com) |
| 1 point by tony-ds on Nov 6, 2023 | past | 1 comment |
|
| | Doyensec: Eval Villain, bemodtwz's tool finds XSS and JavaScript instrumentation (doyensec.com) |
| 1 point by tony-ds on Sept 25, 2023 | past | 1 comment |
|
| | Comparing Semgrep and CodeQL (doyensec.com) |
| 3 points by eatonphil on Sept 9, 2023 | past |
|
| | Session Hijacking Visual Exploitation (doyensec.com) |
| 2 points by skilled on Sept 2, 2023 | past |
|
| | Reversing Pickles with R2pickledec (doyensec.com) |
| 2 points by lukastyrychtr on June 8, 2023 | past |
|
| | Crypto scams and how to improve wallet security (doyensec.com) |
| 1 point by tony-ds on March 28, 2023 | past | 1 comment |
|
| | Windows Privilege Escalation Vulnerability – Doyensec (doyensec.com) |
| 1 point by tony-ds on March 21, 2023 | past | 1 comment |
|
| | NPM Request Library SSRF Cross Protocol Redirect Bypass (doyensec.com) |
| 2 points by tellico_lun on March 16, 2023 | past |
|
| | Arbitrary File Write to RCE by Doyensec (doyensec.com) |
| 2 points by tony-ds on Feb 28, 2023 | past | 1 comment |
|
| | ImageMagick Security Policy Evaluator (doyensec.com) |
| 2 points by todsacerdoti on Jan 12, 2023 | past |
|
| | ImageMagick Security Policy Evaluator: check if your security policy is hardened (doyensec.com) |
| 2 points by phosphore on Jan 10, 2023 | past | 1 comment |
|
| | Comparing Semgrep and CodeQL (doyensec.com) |
| 1 point by transpute on Dec 27, 2022 | past |
|
| | New Golang anti-SSRF library released (doyensec.com) |
| 1 point by tony-ds on Dec 13, 2022 | past | 1 comment |
|
| | XSS to Full RCE in VSCode via Jupyter Notebook Support (doyensec.com) |
| 3 points by tony-ds on Oct 27, 2022 | past | 1 comment |
|
| | The Danger of Falling to System Role in AWS SDK Client (doyensec.com) |
| 1 point by tony-ds on Oct 19, 2022 | past | 1 comment |
|
|
| More |
