VNG Security Reponse Center - @VSRC

Blog




Liferay revisited: A tale of 20k$

VSRC, 2 years ago

At the beginning of this year, we found an interesting exploit chain to achieve pre-auth RCE on an asset of a big Fintech company. Due to…

Weaponizing Monster for Cookies Attacks

VSRC, 2 years ago

Summary To find the weak secret key in web applications, I used cookiemonster during pentests and scout. When a key is leaked, it can make…

Tags

1day (1)advisory (1)blog (2)bugbounty (2)burp-extender (1)cookiemonster (1)liferay (1)tool (1)writeup (1)

VNG Security Response Center

VNG Campus, Lot Z06, Street 13, Tan Thuan Export Processing Zone

Tan Thuan Dong Ward, District 7, HCMC, Vietnam

VNG Corporation
HomeContact
Twitter icon