Prismo Blog

Detection of Vulnerabilities in Web Applications – OS Command Injection

By Abhishek Singh and Ramesh Mani Web injection exploitation has ruled as the top web application vulnerability for a decade. “Security Vulnerabilities in Network Accessible Services” report was published by Independent Security Evaluators ISE[1]....

Detection of Vulnerabilities in Web Application – SQL Injection

  By Abhishek Singh and Ramesh Mani Web application vulnerability remains one of the critical entry vectors which have been employed by threat actors. Injection vulnerability has been ruled as one of the critical vulnerabilities in OWASP top 10 [2]....

Detection of Web Shells

Web shells are one of the critical malware which has extensively been used by threat actors. The web shell can be PHP, ASP, JSP, Perl, Ruby, Python applications. In this white paper, we examine the PHP-based web shell, explain the execution flow of...