Ivan Marković

Security consultant and researcher

Long experience in designing and implementation of security solutions, mainly oriented on web, mobile and embedded applications. Author of penetration testing tools, recognized by OWASP organization and BackTrack Linux distribution. Researching work includes discovery of vulnerabilities of numeral applications and services, and for these, author received public apreciations by Microsoft Company.

Contact via Linkedin or read interesting staff on Twitter.

Phishing campaign takedown

Some photos from phishing campaign takedown. I have coordinated with providers and CERT-s.

SSL Monitor Web servisa Republike Srbije

Povodom sve većeg broja opasnosti koje kruže Internetom (a i vašim telefonom, frižiderom, automobilom, ...) kao i povodom teksta koji je objavio poverenik za informacije: "Vaša komunikacija nije bezbedna", rešio sam da dam svoj mali doprinos zajednici :) Na ovoj stranici nalazi se monitor SSL sertifikata javnih web servisa Republike Srbije.

Http Parameter Contamination

HTTP PARAMETER CONTAMINATION (HPC) original idea comes from the innovative approach found in HPP research by exploring deeper and exploiting strange behaviors in Web Server components, Web Applications and Browsers as a result of query string parameter contamination with reserved or non expected characters.

Real world examples: Bypass Mod_Security SQL Injection rule, Bypass URLScan 3.1 DenyQueryStringSequences rule

Security and Privacy Workshops @ Neutrinos Company

During year 2015, 2016 and 2017 NGO "Neutrinos Company" organized many Security and Privacy Workshops around Serbia (Kragujevac, Belgrade, Novi Sad). We cover basic themes like: privacy rights, ransomware and tools for protection in cyber world.