voidsec2022-01-14T09:29:38+01:00We are proud to announce that ECG got its first major update.
ECG: is the first and single commercial solution (Static Source Code Scanner) able to analyze & detect real and complex security vulnerabilities in TCL/ADP source-code.
ECG's v2.0 New Features
On-Premises Deploy: Scan your code repository on your secure and highly-scalable offline appliance with a local ECG's installation to comply with strict code privacy policies.
API Support: Easily integrate ECG's automated security testing into your continuous integration (CI/CD) and delivery tools. Manage your risks...
voidsec2022-01-14T09:29:56+01:00After a lot of effort and a long month of alpha testing, today I’m proud to announce the launch of ECG’s closed beta.
What is ECG? (tl;dr)
ECG is a TCL static source code analysis tool. It is the first commercial solution able to detect real and complex security vulnerabilities in TCL/ADP source-code.
Want to know more about ECG? Visit ECG's main website!
What is TCL?
TCL is a high-level, general-purpose, interpreted, dynamic programming language. It was designed with the goal of being very simple...
voidsec2022-01-14T09:15:07+01:00This is a re-posting of the original article "Instrumenting Electron Apps for Security Testing" that I have wrote on Doyensec
What is Electron?
While for the traditional desktop application various security techniques exists in order to mitigate...
March 03, 2015
January 26, 2015
Download the Report
In Gennaio, il team VoidSec (voidsec, bughardy, smaury) ha realizzato un web application penetration test sulla piattaforma di blogging Ghost.
Ghost è un nuovo content management system dedicato ai blogger che cercano un’alternativa a WordPress. Un crescente numero di utenti ha abbandonato i CMS tradizionali per abbracciare piattaforme più minimali, concentrate sulla lettura e la scrittura, essenziali; in questo Ghost è uno tra i software più popolari e molto utilizzato, sta...