Security Guides
Deep-dive playbooks, startup fundamentals, enterprise hardening.
SharePoint CVE-2024-38094: Why On-Prem SharePoint Stays a Target
SharePoint Server's recent CVE roster — 2019-0604, 2023-29357 chain, 2024-38094 — shows the on-prem attack surface persists. Detection, mitigation, and the migration…
Security GuidestheHarvester and Recon-ng: OSINT Toolchain in 2026
theHarvester for breadth-of-source aggregation; Recon-ng for workflow continuity across investigation. Where they fit alongside modern tools (subfinder, amass, SpiderFoot, Maltego) in 2026…
Security GuidesMOVEit Transfer (CVE-2023-34362): The Cl0p Mass Exploitation Story
Cl0p exploited MOVEit Transfer's SQLi as a zero-day, compromising 2,000+ organisations including Indian-market third parties. The vulnerability, why it spread so far,…
Security GuidesConfluence CVE-2023-22515 / 22518: When Internal Wikis Become Ransomware Targets
Two Atlassian Confluence CVEs in late 2023 enabled mass-exploitation by ransomware operators. Bug walkthrough, IoCs, mitigation, and the migration question for Confluence…
Security GuidesIDOR: The Bug That Refuses to Die (And How to Find It)
IDOR is on half of Indian SaaS pentests. The taxonomy (sequential, UUID, path, body, header, mass assignment, indirect), the systematic test methodology…
Security GuidesOAuth 2.0 Attacks in 2026: Code Injection, PKCE Downgrade, JWT Issues
Modern OAuth attack surface — redirect URI manipulation, authorisation code injection, state parameter abuse, PKCE downgrade, JWT access token weaknesses, scope escalation.…
Security GuidesSAML Attacks: Golden SAML, XML Signature Wrapping, SLO Abuse
SAML attack surface in 2026 — XML Signature Wrapping (XSW1-8), Golden SAML (SolarWinds technique), signature exclusion, comment injection, audience replay, SLO abuse.…
Security GuidesXXE: External Entity Injection in 2026 — Where It Still Hides
XXE in 2026 — document upload (DOCX, SVG, RSS), SOAP APIs, SAML, RSS processors. Blind XXE via out-of-band channels, XXE-to-SSRF chains, and…
Security GuidesCSRF in 2026: Why SameSite Doesn’t Solve Everything
SameSite=Lax is the default; CSRF should be solved. It is not. SameSite=None for legitimate cross-site, GET-based state changes, subdomain CSRF, CORS misconfigurations,…
Cloud SecurityS3 Bucket Misconfigurations: Why 30% of Indian Startups Still Leak Customer Data
Five S3 misconfigurations we actually find on Indian startup audits — Block Public Access disabled, broad bucket-policy Principal, pre-signed URL leakage, object-level…