Aikido Security BV/Aikido Security: Zen by Aikido /Detail
Detail Updates Leaderboard
sort by
Last published
SQL injection bypasses back in scope for Zen, Node.js version >= 1.6.0!
12/19/2024, 3:55:47 PM (3 months ago)
12/19/2024, 3:56:34 PM

Hi all!

SQL injection bypasses are back in scope for Aikido Zen. We are starting out with Zen for Node.js (version >= 1.6.0), but we'll soon have SQL injection bypasses in scope for our Python agent again as well.

Our new SQL detection algorithm uses a tokenizer. The zen-internals repository is a great starting point to explore our new approach: https://github.com/AikidoSec/zen-internals/tree/main/src/sql_injection.

Looking forward to your submissions!

Happy hacking,

Aikido's Security Team

Aikido Firewall for Python now in scope!
9/6/2024, 10:37:35 PM (6 months ago)

Hi all!

A small gift just before the weekend starts: Aikido's Firewall for Python is now in scope! We've updated our policy and severity assessment around the new scope, so make sure you review them thoroughly before submitting your reports.

Looking forward to your submissions!

Happy hacking,

Aikido's Security Team