KTKevin Tauchmaninkevbotsec.hashnode.dev·Jun 3 · 4 min readCVE Series: MOVEit Transfer SQL InjectionIntroduction Managed file transfer platforms occupy a unique position in enterprise architecture: they exist specifically to move sensitive data between organizations, systems, and partners, making th00
KTKevin Tauchmaninkevbotsec.hashnode.dev·Jun 3 · 4 min readCVE Series: Citrix Bleed NetScaler Buffer OverflowIntroduction Session tokens are the currency of authenticated web sessions — once a server issues a valid session token to a legitimate user, that token is the user's passport to everything they have 00
KTKevin Tauchmaninkevbotsec.hashnode.dev·Aug 26, 2023 · 3 min readCVE Series: Log4j VulnerabilityIntroduction In the world of cybersecurity, vulnerabilities can emerge that have far-reaching consequences. One such vulnerability that has captured the attention of experts and organizations alike is the Log4j Vulnerability, also known as "Log4Shell...00
KTKevin Tauchmaninkevbotsec.hashnode.dev·Aug 25, 2023 · 3 min readDemystifying OWASP Top 10Introduction In the ever-evolving landscape of web applications, security remains a paramount concern. As businesses and services migrate online, the potential attack surface for malicious actors also increases. The Open Web Application Security Proj...00
KTKevin Tauchmaninkevbotsec.hashnode.dev·Aug 24, 2023 · 3 min readCVE Series: ApacheWhat is Apache? Apache, commonly known as the Apache HTTP Server, is an open-source web server software developed and maintained by the Apache Software Foundation. It plays a pivotal role in delivering web content to users' browsers. Apache efficient...00
