Engineering posts about Penetration Testing

Curated summaries and key learnings for engineers working with Penetration Testing.

The article addresses critical HTTP/1.x request smuggling vulnerabilities identified in the Pingora open source framework, particularly when deployed as an ingress proxy. It outlines the nature of...

Cloudflare

11m

React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques

The article discusses the React2Shell vulnerability (CVE-2025-55182), a critical Remote Code Execution (RCE) flaw affecting React Server Components (RSC). Following its disclosure, the Cloudforce One...

AWS

12m

New AWS Security Agent secures applications proactively from design to deployment (preview)

The AWS Security Agent is a proactive security tool designed to enhance application security from the design phase through deployment. It automates application security reviews and provides...

Engineering posts about Penetration Testing

Fixing request smuggling vulnerabilities in Pingora OSS deployments

React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques

New AWS Security Agent secures applications proactively from design to deployment (preview)