What is Detectify?

How to

Never fear, I is here!

New tool release: Discovering the origin host to bypass web application firewalls

Ethical Hacking featured hakluke WAF web application firewall
request smuggling

How to set up Docker for Varnish HTTP/2 request smuggling

api security Farah Hawa hakluke

How to Hack APIs in 2021

Get research and tips from Detectify security experts and the Crowdsource hacker community Subscribe to the Detectify Monthly Round-up
php malware

How-to Tutorial: PHP Webshell De-Obfuscation

How I exploited ACME TLS-SNI-01 issuing Let’s Encrypt SSL-certs for any domain using shared hosting

Onion Onion-domain Tor

Tips for running an onion

bug bounty Frans Rosén XSS

Building an XSS polyglot through SWF and CSP

XSS

How to: Exploit an XSS