Blog | Prismo Systems

Detecting Injection exploitation via Instrumenting Web Applications

November 19, 2020January 11, 2021

RASP technology detects exploitation attempts by instrumenting web applications. There can be multiple ways to detect exploitation attempts. We will discuss some of the approaches by which RASP can detect exploitation attempts along with the pros and cons of each technique. To better explain each of the approaches, we will take an example of a code prone to SQL injection vulnerability and how each of these approaches will detect SQL injection exploitation in the vulnerable code. Code vulnerable to the…

Threat Research, Web Security

Virus Bulletin 2020: Just-In-Time Deception to Detect Credential-Stuffing Bots

September 24, 2020January 11, 2021

We are excited to announce that we are presenting our findings on bots in the upcoming VB2020 conference.

Events, News, Threat Research

Analysis of CVE-2019-2030: OGNL Expression Language Vulnerability

September 2, 2020January 11, 2021

Object-Graph Navigation Language is an expression language for Java. It is widely used in web applications, but it also has security flaws due to its capability of creating and executing codes. In this blog we will discuss exploitation of this vulnerability and detection by Prismo.

Analysis of CVE-2020-9484: Persistent Manager Java Deserialization Vulnerability

July 31, 2020January 11, 2021

CVE-2020-9484 is a recently disclosed vulnerability in Apache. We discuss the details of the vulnerability and detection of the vulnerability.

Threat Reports, Threat Research

Detection of Vulnerabilities in Web Applications – Server-Side Request Forgery

July 15, 2020January 11, 2021

A look at the exploitation technique used to retrieve AWS credentials that were subsequently used to steal the personal information of over 100 million Capital One customers.

Prismo’s Chief Researcher Recognized as Silver Winner in Cybersecurity Excellence Awards 2020

February 22, 2020January 11, 2021

We’re proud to announce that Abhishek Singh, chief researcher at Prismo Systems, was named the Silver Winner in the Cybersecurity Excellence Awards 2020 for Cybersecurity Professional of the Year – North America.

News, Threat Research

Detection of Vulnerabilities in Web Applications – OS Command Injection

December 15, 2019January 11, 2021

Continuing wth the detection algorithm we presented at Virus Bulletin 2019, In this post we introduce the principle of detect, response, and remediate. If remedial action provided by the detection algorithm is taken (fixing the vulnerable code path in this case), it will increase the exploitation complexity for threat actors to breach an organization.

Detection of Vulnerabilities in Web Application – SQL Injection

December 9, 2019January 11, 2021

A deeper dive into the query integrity algorithm to detect SQL injection by instrumenting web applications.

Threat Reports, Threat Research

Detection of Web Shells

November 14, 2019January 11, 2021

In this whitepaper, we examine the PHP-based Web shell, explain the execution flow of code and then discuss the solution to detect it.

Content, Threat Research, White papers

Virus Bulletin 2019 Documents

October 10, 2019January 11, 2021

Here are the docs from our talk @ Virus Bulletin 2019. Thanks to all those who attended!

Content, Events, News, Threat Research

Prismo’s Chief Researcher Recognized as Innovator in SC Media Reboot Leadership Awards 2019

September 24, 2019January 11, 2021

We’re proud to announce that Abhishek Singh, chief researcher at Prismo Systems, has won an SC Media Reboot Leadership Award for Innovators.

News

Catch Me If You Can – Virus Bulletin 2019

September 19, 2019January 11, 2021

We invite you to our presentation at Virus Bulletin 2019. Here’s an overview.

Content, Events, Threat Research

White paper: Detection of Injection Exploitation

June 30, 2019January 11, 2021

Web injection exploitation has ruled as the top web application vulnerability for a decade. In this Prismo white paper, we discuss detection algorithms each of these injection techniques.

Content, Threat Research, White papers