June 2024

API Security: Best Practices for Python Developers - Part II

11 Jun 2024 · 7 min read

May 2024

Why Dependency Security Is Your First Line of Defense Against Cyber Threats

29 May 2024 · 3 min read

May 2024

Beginner’s Guide to Client Prototype Pollution vulnerabilities

15 May 2024 · 5 min read

April 2024

Pentesting Cross-Origin Resource Sharing (CORS) vulnerabilities

30 Apr 2024 · 4 min read

April 2024

State of Security Automation

9 Apr 2024 · 3 min read

April 2024

The Developer's Guide to Effective Secrets Management

2 Apr 2024 · 3 min read

March 2024

API Security: Best Practices for Python Developers - Part I

26 Mar 2024 · 7 min read

March 2024

SAST vs. DAST: Choosing the Right Security Testing for Your Project

14 Mar 2024 · 3 min read

February 2024

AI Pentesting vs Automated Penetration Testing

29 Feb 2024 · 4 min read

February 2024

Why you never get Reflected XSS to execute: Balancing Payloads

20 Feb 2024 · 4 min read

January 2024

AWS S3 Bucket Takeover - how to find it and maximize impact?

10 Jan 2024 · 6 min read

October 2023

Security of new features in Next.js 14 - Server Actions, Taints

30 Oct 2023 · 5 min read

October 2023

Escalating debug mode in Django to RCE, SSRF, SQLi

24 Oct 2023 · 3 min read

September 2023

Vidoc Secures Funding from bValue!

27 Sep 2023 · 2 min read

June 2023

Vidoc - Notifications and Collab Feature Release

6 Jun 2023 · 2 min read

May 2023

Ultimate 401 and 403 bypass methods

9 May 2023 · 7 min read

February 2023

How we made $120k bug bounty in a year with good automation

6 Feb 2023 · 7 min read

February 2023

Introducing the New and Improved Web-Based Security Tool

1 Feb 2023 · 5 min read

November 2022

Why good Recon is hard, and how we make it easy

3 Nov 2022 · 3 min read

September 2022

Vidoc - a hacking platform

24 Sep 2022 · 3 min read

May 2022

Hacking Swagger-UI - from XSS to account takeovers

16 May 2022 · 10 min read