Nibble Security
"I've forgotten your password, could you please remind me?"
Saturday, October 1, 2016
Defending against Java Deserialization Vulnerabilities
›
During a recent OWASP Meetup in San Francisco , I gave a presentation on Java Deserialization vulnerabilities focused on defense techniques ...
Monday, November 9, 2015
Fixing Java Serialization Bugs with SerialKiller
›
On Friday, FoxGloveSecurity published a rather inaccurate and misleading blog post on five software vulnerabilities affecting WebLogic, Web...
1 comment:
Sunday, September 20, 2015
Unofficial security patch for Ubiquiti Networks mFi Controller 2.1.11
›
On September 3, 2015 SecuriTeam disclosed a vulnerability in the Ubiquiti Networks mFi Controller, a software to configure and control a...
Monday, August 17, 2015
Vulnerability Disclosure: what could that new approach look like?
›
Few weeks ago, Enno Rey published an interesting reflection around vulnerability disclosure blog post discussing how the industry needs to...
1 comment:
Sunday, August 9, 2015
Using Dharma to rediscover Node.js out-of-band write in UTF8 decoder
›
A month ago, Node.js released a security update for a bug in V8's utf-8 decoder affecting Buffer to String conversions. Since numerou...
›
Home
View web version
