Articles


Autonomous Security
New Features, improved ticket management, integrations including Jira support
Thu 04 November 2021

Vulnerability management is a hard journey, the help enable fixing of vulnerabilities urgently, diligently and efficiently, we are excited to release our new remediation capabilities with a wealth of new features.

Autonomous Security
Release of a new remediation capabilities to enable fast, diligent and efficient fixes
Wed 06 October 2021

Vulnerability management is a hard journey, the help enable fixing of vulnerabilities urgently, diligently and efficiently, we are excited to release our new remediation capabilities with a wealth of new features.

Mobile
UI call coverage release for dynamic security testing
Wed 01 September 2021

Ostorlab released the UI call coverage in the analysis environment to show the UI flow exercised during the dynamic security testing.

Newsletter
Ostorlab Nuggets in June issue 5
Thu 27 May 2021

Health Tech, Compromises and attacks, Instrumentation, Black Hat conferences, eBPF and moreā€¦.

Dynamic Analysis
Universal bypass of SSL Pinning ... from theory to a full working PoC with LLDB
Tue 18 May 2021

This article is about bypassing SSL pinning without needing to. Sounds confusing? We will go over the theory, build a full PoC using LLDB in Python and finally extend it to other cool tasks.

Mobile Analysis
5 things every mobile security professional should know about WebViews
Tue 18 May 2021

This article is about WebViews and the security notions we need to have in mind when using these component in both Android and iOS.

Security
Ostorlab detects Dependency Confusion
Wed 03 March 2021

Dependency Confusion is a new attack with high severity impact. This article is an overview of the vulnerability as well as other supply chain attacks.

Web
Finding superhuman XSS polyglot payloads with Genetic Algorithms
Mon 01 March 2021

The following article is a technical deep dive into how genetic algorithms can be leveraged to create superhuman XSS polyglot payloads.

News
News and Updates of Week 8
Sun 28 February 2021

This weeks is marked by multiple high profile data breaches affecting Cashalo, Npower, Kia, T-Mobile and Clubhouse.

Ostorlab
Ostorlab adds Web Security Scanning to its arsenal
Mon 15 February 2021

Ostorlab is adding Web Security Scanner to its arsenal with novel approaches to vulnerability discovery.