Application Security This Week for June 2

Accidentally Took Memorial Day Weekend Off Edition

New tool: FinalRecon- OSINT Tool For All-In-One Web Reconnaissance

Permanent URL Hijack Through 301 HTTP Redirect Cache Poisoning

Didier Stevens, one of my favorite researchers, mentioned that one of his readers has made a docker container with all of his tools.

There is a POC for CVE-2019-0708. Certainly is worth a look.

Speaking of Docker, there is a bug that allows a hypervisor jump.

Finally, the always-wonderful folks at Portswigger have a cool analysis of Behavioral Fuzzing.

And that’s the news! Have a great week.