2 posts by Anthony Ralston

Our team researches and documents bleeding-edge security concepts and hacking techniques. This blog explores these topics and more to keep you informed.

Securing SuiteCRM on Apache

By Anthony Ralston | September 02, 2020 | Blog

SuiteCRM is a popular open-source Client Relations Manager (CRM). I took some time to review the code and basic implementation of the application within a vanilla Ubuntu Debian build. I found good security practices within the application itself,

Read More »

PHP Type Juggling

By Anthony Ralston | August 12, 2020 | Blog

Type juggling is an expected functionality of PHP when leveraging loose comparisons. However, it can be used to subvert intended operations. In this blog we will discuss why type juggling occurs, what are the potential impacts, and why we should

Read More »