Showing 1 - 4 of 4

Files from Mazin Ahmed

Apache Struts 2.3 / 2.5 Remote Code Execution: Posted Aug 26, 2018; Authored by Mazin Ahmed; Apache versions 2.3 up to 2.3.34 and 2.5 up to 2.5.16 remote code execution exploit.; tags | exploit, remote, code execution; advisories | CVE-2018-11776; SHA-256 | e3fe6d3322b4e7bf37f04eb80df88cf1ff50256ec220546413ce1608ec796227; Download | Favorite | View

Bypassing NoScript Security Suite Using XSS And MITM Attacks: Posted Mar 18, 2016; Authored by Mazin Ahmed; This paper discusses different techniques that an attacker can use to bypass NoScript Security Suite Protection. These techniques can be used by malicious vectors in bypassing the default installation of NoScript. The paper also provides solutions and recommendations for end-users that can enhances the current protection of NoScript Security Suite.; tags | paper; SHA-256 | 5f37e8e3412f1440fa6c6a360ed379f128cc4ea278c023e5f3855760b77ba3a5; Download | Favorite | View

Evading All Web-Application Firewalls XSS Filters: Posted Sep 9, 2015; Authored by Mazin Ahmed; This whitepaper documents shortcomings in various popular web application firewalls (WAFS) and how to trigger cross site scripting attacks regardless of the protections in place. Covered are F5 Big IP, Imperva Incapsula, AQTRONIX WebKnight, PHP-IDS, Mod-Security, Sucuri, QuickDefense, and Barracuda WAF.; tags | paper, web, xss; SHA-256 | c38f62eb042bf845f286dc56c557e0a4422de464a3d9658b8fd2d013a1a708c2; Download | Favorite | View

W3 Total Cache 0.9.4 Cross Site Request Forgery: Posted Dec 12, 2014; Authored by Mazin Ahmed; W3 Total Cache version 0.9.4 suffers from a cross site request forgery vulnerability.; tags | exploit, csrf; SHA-256 | 6b5a5b055312a8b9ac869d31da7a50ad0789008ca253cbb4e6f4c154da8a7063; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days