September-October 2021
We are pleased to announce a set of new improvements
Fri 01 October 2021
UI call coverage release for dynamic security testing
Ostorlab released the UI call coverage in the analysis environment to show the UI flow exercised during the dynamic security testing.
Wed 01 September 2021
August 2021
We are pleased to announce a set of new improvements
Sun 01 August 2021
July 2021
We are pleased to announce a set of new improvements
Thu 01 July 2021
Ostorlab Nuggets in June issue 5
Health Tech, Compromises and attacks, Instrumentation, Black Hat conferences, eBPF and more….
Latest posts
Universal bypass of SSL Pinning ... from theory to a full working PoC with LLDB
This article is about bypassing SSL pinning without needing to. Sounds confusing? We will go over the theory, build a full PoC using LLDB in Python and finally extend it to other cool tasks.
Tue 18 May 2021
5 things every mobile security professional should know about WebViews
This article is about WebViews and the security notions we need to have in mind when using these component in both Android and iOS.
Tue 18 May 2021
Ostorlab detects Dependency Confusion
Dependency Confusion is a new attack with high severity impact. This article is an overview of the vulnerability as well as other supply chain attacks.
Wed 03 March 2021
Finding superhuman XSS polyglot payloads with Genetic Algorithms
The following article is a technical deep dive into how genetic algorithms can be leveraged to create superhuman XSS polyglot payloads.
Mon 01 March 2021
News and Updates of Week 8
This weeks is marked by multiple high profile data breaches affecting Cashalo, Npower, Kia, T-Mobile and Clubhouse.
Sun 28 February 2021
Changelog
View all changesHTTP2, Private Custom Checks, actively exploited CVE and much more.
Mon 07 October 2024
Enhanced Vulnerability Detection, Expanded Features, and Critical Fixes
Mon 09 September 2024
OXO Titan, Support for CVSS4, and Attack Surface search with certificates
Wed 28 August 2024