Hello, We’re MONITORAPP. Next week is the start of spring, which means the weather will be a little more mild. We’ll just have to wait and see. 🙂 One of the programs MONITORAPP ran last year with the goal of ‘promoting work efficiency and motivation and building a positive work culture’ was Compliment Relay. Read more about Compliment Relay January 2024 by Eunji Jeon, Associate Researcher of MONITORAPP[…]
Server Side Template Injection Overview Server Side Template Injection (SSTI) vulnerability occurs when templates are structured on the server side and user input values are inserted into existing templates. Attackers exploit template syntax to insert malicious payloads, enabling them to perform actions desired by the attacker. Attack Process SSTI vulnerabilities vary across servers and templates, Read more about Server Side Template Injection[…]
Warm greetings from MONITORAPP! Many organizations have already been using on-premise solutions to ensure safe and healthy Internet access for their employees. However, as many companies have adopted various new work environments such as working from home or flexible work after the pandemic, the use of business applications and data in a cloud Read more about SWG (Secure Web Gateway) – Essential Security Element in the cloud-based SSE Platform[…]
Recently, MONITORAPP has had the opportunity to introduce our newly launched zero trust solutions SIA (Secure Internet Access) and SRA (Secure Remote Access) at various exhibitions and conferences, and also, received inquiries from customers about the architecture of the SSE platform. Therefore, we would like to share our answers regarding the Read more about Zero Trust Architecture based on the SSE Platform[…]
Due to the nature of web services, an organization’s web servers are always exposed to the outside world, which is why approximately 80% of hacking incidents target web servers. However, traditional security solutions such as firewalls and Intrusion Prevention Systems (IPS) have clear limitations in today’s complex network environments. Web servers are Read more about WAAP, an essential strategy for securing modern web applications and APIs[…]
Overview : HTTP/2 utilizes the “Stream multiplexing” feature, unlike HTTP/1.1, allowing multiple streams to be opened and closed within a single TCP connection. We have compiled an analysis of CVE-2023-44487, a denial of service (DoS) vulnerability recently discovered in this protocol. Attack Type : CVE-2023-44487 targets all web services supporting the HTTP/2 protocol, primarily Read more about HTTP/2 Rapid Reset attack[…]
Hello, this is MONITORAPP. Today, we will briefly share about the various Load Balancers provided by AWS, and in particular, dive deeper into the details of GWLB. AWS’s various Load Balancer services AWS offers a variety of load balancer services to help distribute traffic and improve reliability and scalability. The main Read more about Full Integration of AIWAF-VE and AWS Gateway Load Balancer (GWLB)[…]
Hello, We’re MONITORAPP. The Year of the Dragon 2024 has finally dawned. (Ta-da) How’d you do over the holidays, leading up to the end of the year? I’m sure you had a relaxing time with your loved ones, enjoying good cheer and catching up with each other. 🙂 MONITORAPP had a year-end party Read more about Kicking off the Year of the Blue Dragon in 2024 [feat. MONITORAPP New year Kick-off Meeting][…]
