OTF Archives - 7ASecurity Blog https://7asecurity.com/blog/ Helping you secure apps and websites Wed, 26 Mar 2025 09:05:55 +0000 en-US hourly 1 https://7asecurity.com/blog/contents/uploads/2019/06/favicon.ico OTF Archives - 7ASecurity Blog https://7asecurity.com/blog/ 32 32 Círculo Security Audit by 7ASecurity https://7asecurity.com/blog/2025/03/circulo-security-audit-by-7asecurity/ Tue, 18 Mar 2025 10:37:10 +0000 About Círculo Círculo is a safety app built on the Matrix protocol that enables users in authoritarian contexts to create a small “trusted circle” of six people with whom they can share location, safety, and wellness updates, as well as other messages in a secure environment. Audit Description OTF’s Security Lab partner 7ASecurity conducted penetration testing and a “whitebox” audit (a form …

The post Círculo Security Audit by 7ASecurity appeared first on 7ASecurity Blog.

]]> 7ASecurity Completes V2Ray Security Audit https://7asecurity.com/blog/2024/07/7asecurity-completes-v2ray-security-audit/ Mon, 29 Jul 2024 11:00:31 +0000 About V2Ray is a versatile network utility that provides a platform for building proxies to bypass network restrictions—enabling users to access the internet safely and privately in restricted contexts where surveillance and censorship are prevalent. In addition to being open source, V2Ray is designed with encryption and obfuscation functions that make it harder for surveillance forces …

The post 7ASecurity Completes V2Ray Security Audit appeared first on 7ASecurity Blog.

]]> 7ASecurity completes CoverDrop Audit https://7asecurity.com/blog/2024/06/7asecurity-completes-coverdrop-audit/ Wed, 12 Jun 2024 09:46:20 +0000 About CoverDrop Whistleblowers need a secure method to initiate contact and build trust with journalists. Existing tools often cater to later-stage correspondence, leaving crucial, early touch-points vulnerable to surveillance. In addition, many of these tools are difficult to find on newspaper websites, hard to use securely, and offer insufficient user guidance. After conducting workshops with …

The post 7ASecurity completes CoverDrop Audit appeared first on 7ASecurity Blog.

]]> 7ASecurity Completes Opaque Security Audit https://7asecurity.com/blog/2024/03/7asecurity-completes-opaque-javascript-security-audit/ Mon, 11 Mar 2024 11:17:48 +0000 About Opaque Opaque is a JavaScript package to allow secure password-based, client-server authentication without the server ever obtaining knowledge of the password.  Audit Description Through OTF’s Red Team Lab, 7ASecurity conducted a penetration test and whitebox security review of Opaque. A whitebox review is a form of application testing that provides the tester with complete knowledge of the application …

The post 7ASecurity Completes Opaque Security Audit appeared first on 7ASecurity Blog.

]]> 7ASecurity Completes Disguiser Framework Audit https://7asecurity.com/blog/2024/03/7asecurity-completes-disguiser-framework-audit/ Wed, 06 Mar 2024 08:03:47 +0000 About Disguiser   Disguiser is a novel framework that enables end-to-end measurement for accurately and comprehensively investigating global internet censorship practices. It’s challenging to conduct large-scale internet censorship measurement, as it involves triggering censors through artificial requests and identifying abnormalities from corresponding responses. Due to the lack of “ground truth” on the expected responses from legitimate services, …

The post 7ASecurity Completes Disguiser Framework Audit appeared first on 7ASecurity Blog.

]]>