Omegapoint Security Blog

At Omegapoint we are strong believers in sharing our knowledge. On this site we have gathered blog posts and articles that represent our passion for cybersecurity and secure application development.

Top Picks

Defense in Depth — A collection of articles on how to build applications and services that are secure by design

How to choose an IdP — A deep-dive into things to consider when selecting an IdP.

Writeup: Exploiting TruffleHog v3 — Bending a Security Tool to Steal Secrets

Writeup: Keycloak open redirect (CVE-2023-6927) — How to steal access tokens in Keycloak < 23.0.4

Writeup: Stored XSS in Apache Syncope (CVE-2024-45031) — Privilege escalation between IAM portals