About
Blog
Research
Services
Analysis of Disco Savings Adware
Overview We have analyzed the Disco Savings malware in order to identify it's internals and posted a whitepaper, so you should check it for all the details regarding the analysis process. We have posted a number of malicious JavaScript files used by Disco Savings adware in our malware-samples Github ...
By Dejan Lukan | Sep 15, 2015 | Malware Analysis |
Read More ›
Implementing OWASP ZAP Full Layout
Introduction to Full Layout In this article I'll present how I implemented the Full Layout into ZAP OWASP. Since I'm always using ZAP on small screens, it just isn't enough space to actually make use of the two layouts that are available in ZAP: the “Maximize left ...
By Dejan Lukan | Mar 02, 2014 | Programming |
Read More ›
Naxsi - The Web Application Firewall for Nginx
Introduction In this tutorial we'll present naxsi nginx module, which provides a WAF (Web Application Firewall) to any application running behind Nginx web server. It works by inspecting HTTP requests and matching the malicious pattern rules in naxsi_core.rules. If a match is found, the malicious request is blocked ...
By Dejan Lukan | Feb 15, 2014 | Application Security |
Read More ›
Wordpress Security for Users
Introduction We all know that Wordpress is the primary CMS system used on the Internet. We also know that security in Wordpress is not always taken for granted. The Wordpress CMS system can have different vulnerabilities in older versions, so it's vital keep it up-to-date. We should also be ...
By Dejan Lukan | Jan 17, 2013 | Application Security |
Read More ›
Security Categories
1. Introduction I've been a security enthusiast for years now, and currently I'm working as a security penetration tester. Over the years it has happened that I've heard about a new security method I've never encountered before. When I started doing research about the topic, it ...
By Dejan Lukan | Sep 26, 2012 | General Security |
Read More ›
How to Use Iptables
1. Introduction First we must mention that iptables is a Linux kernel firewall, which is why we can categorize it with the picture below: The picture is presented so we can better imagine how firewalls and iptables firewall are connected with information security in general. I've also written an ...
By Dejan Lukan | Sep 21, 2012 | Hacking |
Read More ›
WordPress Security
Introduction There are numerous tools available when checking the security of the WordPress Content Management System (CMS). In the rest of the article we'll mention the WPScan tool, which does a great job of scanning the WordPress installation and its plugins for security vulnerabilities. WPScan WPScan is a WordPress ...
By Dejan Lukan | Aug 31, 2012 | Application Security |
Read More ›
CONTACT US