During a Pentesting Engagement I was able to identify an unrestricted file upload vulnerability. The logical step was to upload a web shell and compromise the server. The web server had.. Read More
Security Training Session @ HCT Abu Dhabi
It is always a pleasure to talk to bright students about security topics and cool hacking tricks. Khalifa & Tudor went to HCT on April 2014 as UAE OWASP Chapter Leaders.. Read More
Bypassing iPad’s restrictions code with the Rubbery Ducky
One day I was testing the security hardening of the corporate iPads of one organization to notice that restrictions such as “cannot use internet, cannot install apps” etc. were locked.. Read More
The Antivirus! The risky “health pill”
Unfortunately for many computer users who are not necessarily IT geeks or security minded people, the antivirus is like Zeus, the almighty protector in which they put all their trust. (if.. Read More