Introducing Burp2Caido! It is now possible to migrate your Burp HTTP history into Caido. It's missing a few things but it works for the most part. 😁 github.com/projectmonke/b…

My colleague hashkitten and I discovered a full-read SSRF vulnerability in Next.js (CVE-2024-34351). We published our research today on Assetnote's blog: assetnote.io/resources/rese…. Thank you to the Vercel team for a smooth disclosure process.

Officially now a full-time bug bounty hunter, today marks my last day at work after making the decision back in April. I am excited to see where things go from here!

Amazing event by HackerZer0, it was nice to share our perspective on bug bounty as hackers and great to hear about the perspective and value it provides when it comes to running a program.

It was a really fun 6 months doing full time Bug Bounty but really excited to have joined the watchTowr team as a Principle Security Researcher!

we’re back, and despite all the buzz about FortiManager - the saga is about to continue. Please, remove this from the Internet *even if fully patched* speak soon.

we're calling it fortijump-higher we're in contact with Fortinet, and yes, there are extra hurdles, but we believe the root cause is the same.

thank you Citrix for democratising Remote Desktop access Before we hop skip JUMP to Friday (stop downplaying please) labs.watchtowr.com/visionaries-at…

hop skip jump over to our latest blog post - analysing Fortinet's FortiJump CVE-2024-47575, FortiJump-Higher (we love this name😄) and beyond (PoC included) labs.watchtowr.com/hop-skip-forti…

in today's 'no way, is it real?' we found out that Palo Alto's PAN-OS CVE-2024-0012 and CVE-2024-9474 were the equivalents of saying 'turn off auth and give me a shell'. Enjoy! labs.watchtowr.com/pots-and-pans-…

👀 we’ve watched APTs recently ravage lawful interception systems, and wanted our own capabilities… Join us on a journey today into Mitel’s MiCollab - that originally started to reproduce CVE-2024-35286, and quickly unravelled into more… labs.watchtowr.com/where-theres-s…

Me and My colleague Sonny 🥷🥷 Have cooked this, both read and write what where 🩸🩸

You knew it was coming… Cleo Harmony, VLTrader, and LexiCom - RCE via Arbitrary File Write (CVE-2024-50623) labs.watchtowr.com/cleo-cve-2024-…

have you been using webshells recently? we've been watching you hack govts and more. join us on our latest ill-advised adventure... until next time.. :-) labs.watchtowr.com/more-governmen…

is it Friday? a few hours ago, we triggered Ivanti's CVE-2025-0282. you know the drill, speak soon.

happy Monday! We've released our analysis and Detection Artifact Generator for Fortinet's CVE-2024-55591... labs.watchtowr.com/get-fortirekt-…

8 million requests, $400 later - we’re back. 🚀 We have demonstrated supply chain attacks that could have allowed us to trivially compromise critical infra. networks, including .gov, .mil, and more. This is real Attack Surface Management. labs.watchtowr.com/8-million-requ…

Welcome to Piotr Bazydło in his debut watchTowr Labs post since joining the phorce in January (of many to come..)! In today's post, we dive into Kentico's Xperience CMS - highlighting multiple Authentication Bypass vulns chained with a post-auth RCE... labs.watchtowr.com/bypassing-auth…

We're back! This time, we're analyzing CVE-2025-34028 - a pre-auth Remote Code Execution vulnerability we discovered in Commvault - yet another enterprise-grade Backup and Replication solution. labs.watchtowr.com/fire-in-the-ho…

Awesome work from SinSinology and Jake 👏