kratoslab - Information Disclosure via Metadata

Information Disclosure via Metadata

Although you can't spot metadata when you read some file in a usual way, it doesn't necessarily mean that there is no metadata in this file. It is hidden inside the file. If an attacker will be able to read it, he/she can find such valuable information as comments, history of changes and much more sensitive information which can be found in metadata. This is called information disclosure via metadata. How to Extract Metadata There are a lot of tools you can use in order to extract metadata from files. One...

Insecure Error Handling

kratoslab - DoS and DDoS

DoS and DDoS

Disclosure of Sensitive Files

Disclosure of Sensitive Files

Disclosure of Software Version

Disclosure of Software Version