877.791.9571 |

About the Author:

Yasser Aboukir is a State Engineer in Computer Science, an Information Security Consultant, as well as a researcher with InfoSec Institute. He is the co-founder of the Moroccan Cyber Security Challenge and a member of the OWASP Moroccan Chapter. Currently interested on topics related to Web Application Security, Penetration Testing Methodologies and Security Management Standards.

SQL Injection through HTTP Headers

During vulnerability assessment or penetration testing, identifying the input vectors of the target application is a primordial step. Sometimes, when dealing with Web application testing, verification routines related to […]


Cookie-based SQL Injection

In this paper we will talk about a non-common vector of SQL injections.

Did you say a “Cookie” ?
A cookie, also known as an HTTP cookie, web cookie, or browser […]