Detectify
Simulate automated hacker attacks on your website
GraphQL abuse: Bypass account level permissions through parameter smuggling
2018-03-15
Using Google Analytics for data extraction
2018-02-01
How I exploited TLS-SNI-01 to issue Let's Encrypt certs using shared hosting
2018-01-12
TrackMania – a Chrome plugin to stalk your friends on Tinder
2017-10-24
The story of EV-SSL, AWS and trailing dot domains
2017-10-24
AWS S3 access controls full control over your assets
2017-07-17
A deep dive into AWS S3 access controls – taking full control over your assets
2017-07-13
Misconfigured S3 Servers Leave Write Access Open to Attackers, Detectify Finds
2017-07-13
