Blog posts

GlassWorm has compromised 400+ packages across five waves - and you can't see the malicious code. It hides inside invisible Unicode characters that your editor, terminal, and linter all render as nothing. We built glassworm-hunter to fix that: a free, open-source Python scanner that detects GlassWorm payloads in your VS Code extensions, npm packages, and Python dependencies before they become your problem.

A $3 microcontroller. No lockout. 10,000 PIN combinations. Here's how CVE-2024-3461 turns any KioWare kiosk into an open door - and why USB HID attacks bypass every USB security policy you have.

How an unvalidated XML field in Rapid7 AppSpider escalates to arbitrary code execution via ActiveX. CVE-2025-4951, found during a manual audit.

Pickle deserialization in ML pipelines is a silent RCE vector hiding in plain sight - passing code review, surviving security audits, and shipping to production at companies that know better. Here's why it keeps happening.

NIS2 doesn't just require documentation - it requires proof your controls hold under real attack conditions. Here's the technical and operational breakdown for security managers.

What to look for in a web application penetration testing provider - and how to tell if you're getting a real test or a cleaned-up scanner report.

Is Caido a serious alternative to Burp Suite Professional? We put both tools to the test so you don't have to.

Detailed technical analysis of content spoofing (CVE-2026-20732) and SSRF-style reconnaissance security exposure discovered in F5 BIG-IP version 17.1.2.2. This assessment demonstrates how authenticated attackers can exploit administrative interfaces for UI manipulation and network reconnaissance.

This article explores advanced techniques for automating SAP GUI interactions using Python and Windows API. It demonstrates how to manage window focus, navigate dynamic fields, and simulate keystrokes at the OS level - offering a robust alternative to SAP scripting in restricted environments. Through practical examples and a detailed analysis of script execution, readers will learn how to streamline SAP login processes, improve reliability, and integrate SAP GUI automation into broader workflows.

In the second part of this series, we delve into automated reconnaissance and attacks within the Java RMI framework. Leveraging the RMI interface/server introduced in Part One, we explore practical techniques for penetration testing. This installment aims to equip pentesters with essential skills for efficient RMI exploitation.