Our papers/rticles are made pretty easy-to-follow, short and simple but informative for every IT professional. We don't use big jargons. For new updates, please see our SecKB.

Posts from our SecKB blog:

• secure configurations for Laravel - The PHP Framework Mon, 03 Sep 2018 04:08:00 +0000
• [Hone Your Ninja Skill] Bypassing in XSS: Under The Radar, Tactical Filter Bypass 2 Sat, 28 Jul 2018 09:51:00 +0000
• Cybersecurity Certification Review: Certified Penetration Testing Engineer(CPTE) Fri, 27 Jul 2018 06:49:00 +0000
• [Hone Your Ninja Skill] Easy Crypto: Unbreakable Signing Level 1, 2 Sun, 22 Jul 2018 15:41:00 +0000
• [Hone Your Ninja Skill] Mobile : Easy Reversing Sun, 22 Jul 2018 15:36:00 +0000
• [Hone Your Ninja Skill] Data is Golden: Your Profile Data version 2 Tue, 26 Jun 2018 14:50:00 +0000
• [Hone Your Ninja Skill] Data is Golden: Your Profile Data Thu, 14 Jun 2018 12:57:00 +0000
• [Hone Your Ninja Skill] Blacklist filter bypass : No HTML tags allowed Thu, 07 Jun 2018 06:11:00 +0000
• How to reduce risk of XSS while allowing html tags Thu, 31 May 2018 02:52:00 +0000
• [Hone Your Ninja Skill] Think Beyond - Tweets Display Wed, 30 May 2018 14:48:00 +0000
• [Hone Your Ninja Skill] Think Beyond - Dig online Mon, 28 May 2018 17:01:00 +0000
• [Hone Your Ninja Skill] Whitelist filter bypass ("URL") Fri, 25 May 2018 11:29:00 +0000
• [Hone Your Ninja Skill] Simple Tactical XSS Filter Bypass Mon, 21 May 2018 04:57:00 +0000
• [Hone Your Ninja Skill] Blacklist filter bypass on < > and = Fri, 18 May 2018 05:58:00 +0000
• [Hone Your Ninja Skill] Blacklist filter bypass on > < ( ) and = Thu, 17 May 2018 05:44:00 +0000
• [Hone Your Ninja Skill] Blacklist filter bypass on Blacklist filter bypass on > < ( and ) Wed, 16 May 2018 17:43:00 +0000
• [Hone Your Ninja Skill] Blacklist filter bypass ("domain name") Tue, 15 May 2018 16:20:00 +0000
• Does your app properly destroy session? Tue, 15 May 2018 16:06:00 +0000
• Bypassing referrer check with no script involved Sat, 12 May 2018 15:30:00 +0000
• When your XSS finding is NOT impressed Sat, 12 May 2018 10:48:00 +0000

• Path Disclosure Vulnerability - Is it serious?
  Sept 2010
  
  
• A Most-Neglected Fact About Cross Site Request Forgery (CSRF)
  August 2010
  
  
• An Apache Trick to protect sensitive/backup files
  Nov 2008
  
  
• An Apache Trick to prevent Shell File Attack
  Nov 2008
  
  
• Things to do When you got hacked
  Nov 2008
  
  
• Ongoing Web Application Security Model (OWA-SM)
  May 2008
  
  
• Hunting for Backdoor Scripts
  March 27, 2008
  
  
• Web Browser Plugins Vulnerabilities
  => [Download controller.php]
  Feb 7, 2008
  
  
• Ways to Protect Sensitive Files & Directories
  Jan 29, 2008
  
  
• Why Session Protection Fails
  Jan 29, 2008
  
  
• Security Professional How to
  Jan 28, 2008
  
  
• Directory Bruteforce Attack
  Jan 09, 2008
  
  
• Causes Of Security Flaws 101
  Jan 07, 2008
  
  
• What XSS Can Do
  Jan 02, 2008
  
  
• Defeating X-Rummer Spam Bot
  Feb 19, 2007
  
  
• Disclosure Vulnerability:phpinfo
  Jul 16, 2006
  
  
• Disclosure Vulnerability:robots.txt
  Jul 16, 2006
  
  
• Next-Generation Phishing Attack
  May 13, 2006