Ethical Hacking

CVE-2024-28088: How URI Traversal in LangChain Led to API Token Theft and potentially Remote Code Execution

CVE-2024-28088: How URI Traversal in LangChain Led to API Token Theft and potentially Remote Code Execution

This is the story of how Robbe discovered CVE-2024-28088, a URI traversal vulnerability in LangChain’s configuration loading mechanism that led to full API token leakage,…

by Laurent Dupont
Posted on
Posted in Toreon all
How I Discovered vulnerability CVE-2024-2912: Unveiling BentoML Pickle-Based Serialization

How I Discovered vulnerability CVE-2024-2912: Unveiling BentoML Pickle-Based Serialization

This is the story of how I found a remote code execution vulnerability CVE-2024-2912, in BentoML and what it can teach you about securing your…

by Laurent Dupont
Posted on
Posted in Toreon all
Examining attack tree tools, how do they compare?

Examining attack tree tools, how do they compare?

In this article we tackle two Attack Tree tools and comepare them. Are they worth using or not?

by Steven Wierckx
Posted on
Posted in Toreon all
7-8/10/21 Toreon @ Brucon

7-8/10/21 Toreon @ Brucon

Toreon is once again attending BruCON as a diamond sponsor!

by Laurent Dupont
Posted on
Posted in Toreon allEvents
24/06/21 – Online Demo: from 0 to domain admin in 5 minutes

24/06/21 – Online Demo: from 0 to domain admin in 5 minutes

Review our online demo or download the slides

by Laurent Dupont
Posted on
Posted in Events
Email bomb alert! The dangers of the “forgot password“ page

Email bomb alert! The dangers of the “forgot password“ page

Learn more about email bombing and how to protect your organization against it.

by Laurent Dupont
Posted on
Posted in Toreon all
10/06/21 – Toreon Seminar : Develop a security culture

10/06/21 – Toreon Seminar : Develop a security culture

Review our seminar or download the slides

by Laurent Dupont
Posted on
Posted in Events
From 0 to domain admin in only 5 minutes

From 0 to domain admin in only 5 minutes

Learn why your LLMNR feature should be disabled on all devices in order to mitigate an LLMNR poisoning attack.

by Laurent Dupont
Posted on
Posted in Toreon all
22/06/21 – Toreon Seminar : GDPR implementation in Hospitals

22/06/21 – Toreon Seminar : GDPR implementation in Hospitals

Review our seminar or download the slides

by Laurent Dupont
Posted on
Posted in Events
26/05/21 – Toreon Seminar : Cybersecurity Grants for Flemish SME

26/05/21 – Toreon Seminar : Cybersecurity Grants for Flemish SME

Review our seminar or download the slides

by Laurent Dupont
Posted on
Posted in Events

Start typing and press Enter to search

Shopping Cart