Research Worth Reading Week 32/2024

This week again, we publish a list of research worth reading! Make sure you check it out!

🛠️Gitxray: a security X-Ray for GitHub repositories

Bad actors in your Github? Worry no more, the awesome team at Kulkan has you covered with the new tool they just released: gitxray. They detail some of the use cases in their blog post: Gitxray: a security X-Ray for GitHub repositories.

❤️ ARVO: Atlas of Reproducible Vulnerabilities for Open Source Software

If you are looking for reproducible vulnerabilities in C/C++ based Open Source Software, look no further: read the paper and download the dataset: n132/ARVO-Meta/.

👉 Splitting the email atom: exploiting parsers to bypass access controls and Listen to the whispers: web timing attacks that actually work

It’s BlackHat and Defcon time! The research team at PortSwigger published some new research on email parsing and web timing attacks.

Photo of PentesterLab
Written by PentesterLab
The platform to learn web hacking and security code review
Related Blog Posts
☝️