Category: Project Resonance
Analysing Misconfigured Firebase Apps: A Tale of Unearthing Data Breaches (Wave 10)
Introduction In the last few years, Data breaches have been on the rise. Apart from the web servers, mobile applications…
Thousands of Unsecured Kubernetes Clusters Exposed on the Internet — Wave 9
Wave 9 of Project Resonance was conducted to determine the security posture of the exposed Kubernetes clusters around the internet.…
The Current State of Security, Privacy and Attack Surface on Android: Scanning Apps for Secrets and More – Wave 8
Our research shows that secret leakage is still an issue developers must be addressed with secure development practices. We recommend…
Millions of Secrets Exposed via Web Application Frontends – Wave 7
Web applications are the cornerstone of anything on the publicly accessible internet. Due to the complexities of the software development…
Internet-Wide Study: State of SPF, DKIM, and DMARC (Wave 6)
At RedHunt Labs, (under Project Resonance), we frequently conduct internet-wide research in different shapes and formats to understand the state…
Scanning Millions of Publicly Exposed Docker Containers – Thousands of Secrets Leaked (Wave 5)
Docker is a popular tool that has become synonymous with containers. Docker can build images and run containers. The tool…
Thousands of Unauthenticated Databases Exposed on the Internet – Wave 4
Internet-wide research on the security posture of databases exposed on the internet. This blog contains all the specifics and analysis…
Top Organizations on GitHub Vulnerable to Dependency Confusion Attacks – Wave 3
We analyzed the top 1,000 GitHub organizations. It involved scanning 38,691 GitHub repositories (Ruby, Python, JavaScript, Go, and PHP code).