News
29 September 2021
Obfuscated Apps Waste Time. Here’s How to Pentest Smarter
Mobile applications: Why they should always be tested on a build without obfuscation, SSL pinning, and root/jb detection.
12 August 2021
3 Cybersecurity Essentials That Actually Make a Difference
Data breaches are on the rise — but the good news is, you don’t need advanced tools to protect yourself. Start with these three essentials.
11 November 2020
Citadelo Joins Forces with Artmotion to Grow Across Europe
We’ve joined forces with Artmotion, a Swiss cloud leader, to accelerate our expansion across Europe. Together, we aim to deliver smarter, stronger security solutions — and stay true to our hacker roots.
1 June 2020
Full infrastructure takeover of VMware Cloud Director (CVE-2020-3956)
How a single simple form submission can be manipulated to gain control of any Virtual Machine (VM) within VMware Cloud Director. The story of a critical vulnerability that enables a full infrastructure takeover.
4 June 2019
Security Practices in Web Application Development - OWASP TOP 10
Is there 100% error free software? Is there 100% secure software? The answer to both questions is NO, but don't panic.
24 May 2019
Intigriti XSS challenge write-up
Intigriti published a DOM XSS Challenge available at Intigriti’s bug bounty platform. The assignment was to exploit a DOM XSS vulnerability on this page and to trigger a pop up of the document.domain (challenge.intigriti.io).