by Ashley Donaldson | Jan 5, 2018 | News
With the recent disclosure of the hardware bugs Meltdown and Spectre, the infosec world has been thrown into a bit of chaos. The bottom line is “It’s a very serious bug in the CPU itself; your computer is most probably affected, but the major operating... by Ashley Donaldson | Sep 27, 2017 | News
This blog post is based on a set of challenges presented at SecTalks Canberra. You can have a go at solving the challenges here – this post will have some spoilers. Here’s a trick question: if I have a negative number, and I multiply it by negative one,... by Peleus | Aug 16, 2017 | News
Introduction Ionize has a long history of providing security services to a wide range of clients, be it government, academic, or commercial sectors. In our experience, there is a large amount of confusion as to what style of security assessment will achieve the goals... by Michael Bielenberg | Jul 10, 2017 | News
On a recent engagement, our testers were faced with a single page web application which was used to generate PDF documents. This web application contained a multi-step form that ultimately let the user download a PDF document containing the details they had entered.... by Michael Bielenberg | Jan 13, 2017 | News
By default, Apache Tomcat listens on 3 ports, 8005, 8009 and 8080. A common misconfiguration is blocking port 8080 but leaving ports 8005 or 8009 open for public access. Port 8005 is less interesting and only allows shutting down the Tomcat server, while port 8009... by Brent Sykes | Dec 14, 2016 | News
With the increase in mobile device usage, more and more organisations are starting to implement mobile device solutions. The ability to access work emails and files from a phone or tablet is no longer reserved just for executive staff as our offices and working...