Security Research

Virus harvesting Czech eID card identities

This research was conducted in cooperation with WardenSec. This research was presented at QuBit Prague 2020. Video of the talk is available on YouTube. Popis zranitelnosti v češtině je k dispozici zde. Introduction Czech government started issuing new electronical identity cards (further referred to by its Czech name eObčanka) back in July 2018. Those shall […]


How to carry out successful penetration test?

Penetration testing became de-facto standardized service that companies either use or plan to use as integral component of security operations. However, many companies still struggle with the same challenges. What shall we test? How to adequately scope the penetration testing project? How to utilize penetration testing in order to measurably improve security in long run? […]