Websec / Blog
Securing Today. Tomorrow could be too late.

Join us as we explore the ever-evolving world of cyber threats and arm yourself with knowledge to defend against potential breaches.

Get Consultation

Discover whats new

Posted 02 Nov, 2024

Critical Vulnerability in Vision Helpdesk Allows Unauthorized Session Access

English, DutchA Serialized IDOR vulnerability in Vision Helpdesk enables session prediction, allowing attackers to impersonate users without authentication.

full disclosurezero day0-day

Posted 17 Jul, 2024

How to Prepare for the EU NIS2 Directive

English, DutchAs cyberattacks grow, the EU’s NIS2 directive builds on NIS1 to provide more rigorous cybersecurity measures. Learn how to ensure NIS2 compliance with WebSec.

nis2compliancenis2 directive

Posted 02 Aug, 2024

AttackForge vs PlexTrac Comparison: Differences, Similarities and Alternatives

English, DutchLearn the differences and similarities between AttackForge vs PlexTrac for pentesting management and reporting, including alternatives to make an informed choice.

attackforgeplextracpentest management

Critical IDOR Vulnerability in LatePoint Plugin Exposes Sensitive Data

English, DutchThe LatePoint Plugin plugin for WordPress was vulnerable to unauthorized access of data through Insecure Direct Object Reference, allowing for the exposure of customer payment data such as creditcards

Posted 13 June, 24

An Introductory Guide to Pentesting Azure: Benefits and Tools: Part 2

EnglishIn this guide to pentesting Azure, we discuss the benefits of cloud penetration tests and the best Azure tools to identify & fix vulnerabilities.

Posted 14 April, 24

Hack ZTE router's admin panel

EnglishLet's say that you are connected to a public Wi-Fi. How difficult is it to crack the password to the admin panel of the router?

Posted 12 April, 24

An Introductory Guide to Pentesting Azure: Part 1

EnglishMeta Description: Here's a guide to pentesting Azure, adapting approaches to different cloud environments, and best practices to identify & fix vulnerabilities.

Posted 09 April, 24

Mobile pentesting series part 2: reversing Android application

EnglishYou may be curious, as a penetration tester, as to how a particular app feature operates or what library it utilizes. Otherwise, you may be interested in the underlying architectures or components of

Posted 19 January, 24

Mobile Pentesting Series - part 1: bypass SSL pinning in Android

EnglishThe purpose of this article is to demonstrate how to circumvent SSL pinning on Android.

Posted 27 October, 23

STUN Protocol IP Exposure Tool by WebSec

EnglishThe STUN Interception Tool is a powerful tool designed to leverage the principles of STUN. Learn more about its features and how to use it effectively.

Posted 11 September, 23

YARA rules Part 2: Using modules

EnglishLet's continue our acquaintance with YARA rules

Posted 22 June, 23

Need Security?

Are you really sure your organization is secure?

At WebSec we help you answer this question by performing advanced security assessments.

Want to know more? Schedule a call with one of our experts.

Schedule a call

Websec / Blog Securing Today. Tomorrow could be too late.