Apache Struts research at scale, Part 3: Exploitation
During our CVE-2018-11776 research, we created our own proofs-of-concept so they’d work in a variety of configurations at scale (115 versions of Struts). The post Apache Struts research at scale, Part 3: Exploitation appeared first on Software Integrity Blog ... Read More
Apache Struts research at scale, Part 2: Execution environments
During our CVE-2018-11776 research, after building 115 versions of Apache Struts, we had to address the challenges of recreating the execution environments. The post Apache Struts research at scale, Part 2: Execution environments appeared first on Software Integrity Blog ... Read More
Apache Struts research at scale, Part 1: Building 115 versions of Struts
When our research findings from CVE-2018-11776 prompted us to research other vulnerabilities, the first step was building 115 versions of Apache Struts. The post Apache Struts research at scale, Part 1: Building 115 versions of Struts appeared first on Software Integrity Blog ... Read More
