Yasser Aboukir is a State Engineer in Computer Science, an Information Security Consultant, as well as a researcher with InfoSec Institute. He is the co-founder of the Moroccan Cyber Security Challenge and a member of the OWASP Moroccan Chapter. Currently interested on topics related to Web Application Security, Penetration Testing Methodologies and Security Management Standards.
During vulnerability assessment or penetration testing, identifying the input vectors of the target application is a primordial step. Sometimes, when dealing with Web application testing,
In this paper we will talk about a non-common vector of SQL injections. Did you say a “Cookie” ? A cookie, also known as an