About Gilad Ofir
Information/Application Security Consultant
Entries by Gilad Ofir
Guidelines for pentesting security systems
29/12/2016 /0 Comments/in General /by Gilad OfirHow do you perform a security test? Ever wanted to perform a penetration test on a security system (website, application, mobile and etc.) and just didn’t know where to start? These days, companies are very concerned about the security in their applications due to the increase in the number of disclosed vulnerabilities and exploits which can […]
Advanced Packet Editor – TCP/HTTP Client-Server Proxy
01/06/2016 /0 Comments/in General /by Gilad OfirThe Advanced Packet Editor (APE) is an open-source project for a TCP and HTTP-based proxy that allows you to intercept and manipulate communication between clients and servers. We at AppSec Labs have taken the project, modified and improved it into a useful tool for application penetration testing. This tool is under the GPL license (for […]
New SSL Vulnerabilities – Spoofing CA Certificates
10/08/2015 /0 Comments/in General /by Gilad OfirOpenSSL is a widespread, open-source SSL protocol application and is widespread and used by numerous projects and organization for providing rapid, adaptable and “secure” solution. OpenSSL has recently reached headlines again, but on a bad note. As of late (the past two years or so), the older and current versions of SSL have suffered from […]
OpenSSL – Diffie Hellman and Elliptic Curve Cryptography with Digital Certificates
10/05/2015 /0 Comments/in General /by Gilad OfirOpenSSL is a leading open-source SSL solution that offers many features; from client and server communication, to certificates generation and self-signing. The OpenSSL allows a user to issue CA certificates and use them to sign other certificates for both testing and production scenarios. Visit OpenSSL website: https://www.openssl.org/
SSL FREAK Vulnerablity
12/03/2015 /2 Comments/in General /by Gilad OfirAs security experts, AppSec Labs can help you protect against SSL based attacks as well as keeping our website, www.appsec-labs.com safe from these attacks. SSL/TLS is a transport encryption protocol which is used by most applications and infrastructure to provide confidentiality and integrity for safe communication between a client and a server.
Protecting a Windows application from premature termination
16/09/2014 /0 Comments/in General /by Gilad OfirHave you ever written a Windows app that works on a specific and very important task that must be completed, but then someone force-closes it? One solution would be to send a request to the user that asks the user not to force-close the app. Unfortunately, this doesn’t usually work. There is a cool “trick” […]
Categories
Archive
- December 2020
- September 2020
- June 2020
- March 2020
- July 2017
- May 2017
- March 2017
- February 2017
- January 2017
- December 2016
- September 2016
- July 2016
- June 2016
- May 2016
- April 2016
- March 2016
- January 2016
- December 2015
- August 2015
- June 2015
- May 2015
- March 2015
- February 2015
- January 2015
- December 2014
- September 2014
- July 2014
- June 2014
- May 2014
- April 2014
- March 2014
- January 2014
- December 2013
- November 2013
- December 2012
- September 2012
- February 2012
- October 2011
- September 2011
- August 2011