Professionally Evil Insights/Blogs

Professionally Evil Blog

A blog by experts of penetration testing and other security assessments.

Testing, Vulnerability, Guidance, data breach, information security, penetration testing, application security, professionally evil, Secure Ideas, hacking, best practices, cybersecurity, Privilege Escalation

Testing,
Vulnerability,
Guidance,
data breach,
information security,
penetration testing,
application security,
professionally evil,
Secure Ideas,
hacking,
best practices,
cybersecurity,
Privilege Escalation

Application Security 202: Vulnerabilities Accepted

vul·ner·a·bil·i·ty The quality or state of being exposed to the possibility of being attacked or harmed, either physically or emotionally. This is the Oxford English Dictionary definition of vulnerability. But I’m going to modify it a little bit to reflect our topic of application security. ...

Never miss a Professionally Evil update!

Privilege Escalation via File Descriptors in Privileged Binaries

Today I wanted to cover an application security topic that applies to SetUID binaries. As we ...

Learn more