Watch the last 44CON Lunchtime Talk with April C Wright
On Friday 24th September we held the second day of our 44CON Lunchtime Talks on Zoom. The second talk was by April C Wright on how to be a bad…
Watch the third 44CON Lunchtime Talk with Andrew Tierney
On Friday 24th September we held the second day of our 44CON Lunchtime Talks on Zoom. The first talk was by Andrew Tierney on Intro to IoT hacking. We have…
Watch the second 44CON Lunchtime Talk with Ken Munro
On Thursday 23rd September we held our first 44CON Lunchtime Talks on Zoom. The second talk was by Ken Munro on Aviation Security 101. We have just released the video….
Watch the first 44CON Lunchtime Talk with Nick Selby
Last Thursday we held our first 44CON Lunchtime Talks on Zoom starting with Nick Selby‘s The Anti-Checklist Manifesto. We have just released the video. Enjoy! We will release the next…
2021 | 44CON News | Events | Featured | Threat Condition
44CON.xi Cyber Crisis – Threat Condition
The best time to learn about how you will act in a crisis is not when your first crisis happens. We have some exciting news! We have partnered with Stone…
Bypassing CSP via ajax.googleapis.com
Content Security Policy (CSP) is the number one defensive technology in modern web applications. Many developers add ajax.googleapis.com to CSP definitions, because they use libraries from this very popular CDN in their web…
Exploiting Race Conditions
A race condition attack is one of the most dangerous and underestimated attacks on modern web applications. It’s related to concurrency and multithreading. As a result of this attack an…
Free webinars with 7aSecurity
7aSecurity will again be running three free 1 hr webinars to introduce you to the courses they will run in June and September: Hacking Modern Web apps with RCE…
2021 | 44CON News | Featured | Training
Live Online Training in 2021
We are again offering Live Online Training until it is safe to return to venues and offer on-site training courses. Check what we have on offer for you in 2021…
Free webinars
7aSecurity will be running three free 1 hr webinars to introduce you to the courses they will run in December: Hacking Android & iOS apps with Deep Links and XSS…
Bypassing CSP via ajax.googleapis.com
Content Security Policy (CSP) is the number one defensive technology in modern web applications. Many developers add ajax.googleapis.com to CSP definitions, because they use libraries from this very popular CDN in their web…
Exploiting Race Conditions
A race condition attack is one of the most dangerous and underestimated attacks on modern web applications. It’s related to concurrency and multithreading. As a result of this attack an…