16 stories

Vulnerability Management

Stay informed on best practices in vulnerability management, from exploit handling to PDCP updates, with insights on identifying, prioritizing, and remediating security risks in systems and applications.

Implementing Nuclei into your GitHub CI/CD pipelines

It is critical that an organisation secures all of their assets along their entire software supply chain. For instance, in a DevOps lifecycle, as a developer, ensuring the security and stability of your code is crucial. One effective way to do this is by implementing automated security testing as part of your continuous integration and deployment (CI/CD) pipeline. In this blog, we will explore how to use Nuclei, a powerful open-source tool for scanning web applications, in your GitHub CI/CD pip

Nuclei & Templates Vulnerability Management

Interactsh v1.0.0

Interactsh v1.0.0 brings more stability, new protocols support, and a slew of other improvements and security fixes. Server Pool Support + random selection With new vulnerabilities being released recently which relied on DNS interactions (log4j), interactsh servers started receiving lot more load from nuclei scans than they could withstand. With the new interactsh release, the client has been modified to support a list of interactsh servers from which a server is randomly selected for use. T

Vulnerability Management

Exploiting Race conditions with Nuclei

What Is a Race Condition Vulnerability? A race condition attack happens when a computing system that’s designed to handle tasks in a specific sequence is forced to perform two or more operations simultaneously. This technique takes advantage of a time gap between the moment a service is initiated and the moment a security control takes effect. This attack, which depends on multithreaded applications, can be delivered in one of two ways: interference caused by untrusted processes (essentially a

Nuclei & Templates Vulnerability Management

Github Actions for Application Security

Update: PD-Actions GitHub project is suspended by GitHub team due to abuse of Actions platform by malicious actors using PD-Actions. "GitHub Actions help you automate tasks within your software development life cycle. GitHub Actions are event-driven, meaning that you can run a series of commands after a specified event has occurred. For example, every time someone creates a pull request for a repository, you can automatically run a command that executes a software testing script." What this m

Vulnerability Management Learning & Automation

Vulnerability Management

Implementing Nuclei into your GitHub CI/CD pipelines

Interactsh v1.0.0

Exploiting Race conditions with Nuclei

Github Actions for Application Security

Get started for free

See ProjectDiscovery in action

Platform

Open Source

Resources

Company