• EN-USEN-US
    • PT-BRPT-BR
    • EN-USEN-US
  • Check our website
  • Know our product

Newsletter

Conviso AppSecConviso AppSec
Menu
  • Articles
    • Application Security
    • News
    • Infrastructure
  • Code Fighters
  • News
  • Tech
18 posts

Browsing category

Code Fighters

At Conviso, we believe that knowledge is more potent when it’s shared. Our Code Fighters Lab is composed by our Research and Development Team – Information Security Analysts dedicated to continuously studying Application Security, striving to promote relevant information for the AppSec community.

We are truly inspired by the ideal of AppSec as a culture. That’s why our professionals work daily to find new, innovative solutions to security challenges – to then share their findings and collaborate with the community.

Application SecurityCode Fighters
28/10/2021

Veracode API: Getting things done with AWS Lambda and AWS API Gateway

By Daniel Arenas
Every day at Conviso both dev and sre teams are working together facing challenges to make Conviso Platform a more complete…
Share
Application SecurityCode Fighters
07/10/2021

CVE: 2021–3311 October CMS Token Reactivation

By Anisio Santos
Let’s talk about October CMS Token Reactivation. Don’t get me wrong, but I believe that ‘luck’ many times is really a thing in…
Share
Application SecurityCode Fighters
13/09/2021

JSON WEB Tokens: Tips and procedures for secure implementation

By João Ciconet
JWT (JSON WEB Tokens) is an open standard, documented by RFC-7519, that defines how to transmit and store JSON objects in a simple, compact…
Share
Application SecurityCode Fighters
19/08/2021

Mitre Attack Bot: An easy to use bot for searching the Techniques in Mitre’s database.

By Communication Team
Have you ever wanted to search something from the Mitre database but didn’t really wanted to leave your Slack conversation? Is a group…
Share
Application SecurityCode Fighters
27/07/2021

Tips & Tricks for API Pentest

By Daniel Jordan
In order to enable communication between different platforms, the use of APIs (Application Programming Interface) is becoming increasingly…
Share
Code Fighters
22/07/2021

How to use Firefox as a tunnel to bypass any firewall

By Communication Team
A crucial element for the Red Team’s task is having stealth to perform the attack, success in the ability to expose an aggressive mindset…
Share
Application SecurityCode Fighters
07/07/2021

A fantastic word from Graphql

By uiltonlopes
As GraphQL is the star of this publication, we need to contextualize a little about it. You can also listen to the audio version of this…
Share
Application SecurityCode Fighters
21/06/2021

Introduction to Insecure Deserialization in PHP

By Antony Leite
Since the beginning of the year in my trajectory in the Pentest as a Service (PTaaS) team at Conviso, I have been following the operations…
Share
Code Fighters
19/05/2021

A case study on: CVE-2021-22204 - Exiftool RCE

By Gustavo Dutra
Recently, the researcher wcbowling[1] found a vulnerability in the Exiftool tool, that enabled a malicious actor to perform a Remote code…
Share
Página 2 de 2«12
  • About Us

    With over 10 years specialized in application security projects, we are recognized in the market as one of the most experienced brazilian company in Application Security.

  • Check This Articles

    • Application Security

      Operations according to SAMM: Operational Management in Application Security

      31/01/2023
    • Application Security

      An Application Security Program: AppSec Journey

      26/01/2023

Conviso Application Security Todos os direitos reservados

 

Loading Comments...