What is Detectify?

Modern PHP Security Part 2: Breaching and hardening the PHP engine

featured modern php SQLi SSRF SSTI

Modern PHP Security Part 1: bug classes

php malware

How-to Tutorial: PHP Webshell De-Obfuscation

PHP php malware

Investigation of PHP Web Shell Hexedglobals.3793 Variants

password managers

Thinking outside of the password manager box

AWS bug bounty Frans Rosén Google Cloud s3 buckets

Bypassing and exploiting Bucket Upload Policies and Signed URLs

2fa phone number

The danger of recycled phone numbers

host headers password managers Safari XSS

Scratching the surface of host headers in Safari

Detectify Crowdsource

GraphQL abuse: Bypass account level permissions through parameter smuggling

open redirect phishing social media

Changing the URL of social media sharing buttons