2023 Ambassador World Cup: Kicking off the Finals
The Ambassador World Cup So Far Teams & hackers The Ambassador World Cup started out with 29 teams and 677 hackers from 22 different countries.…
Category: Mix
[tl;dr sec] #204 – Following Attackers’ CloudTrail, SSH Security Tools, Secure by Design
I hope you’ve been doing well! 🤖 AI Meetups Erry’ Day Living in the Bay Area, there appears to be an ever-increasing number of AI-related…
Bug Bytes #214 – We launch a course, bug hunters go full time and the $20k bug
Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The second series is curated by InsiderPhD. Every week, she keeps…
Elevating Enterprise API Security with Wallarm for MuleSoft Anypoint Platform
In an age characterized by digital transformation, APIs serve as the backbone of modern applications, enabling diverse systems to communicate and share data seamlessly. This…
AI Security Has Serious Terminology Issues · Joseph Thacker
AI Security is an emerging field. I LOVE being at the forefront of something so transformative and important. There are definitely some growing pains with…
Extracted Wisdom: Marc Andreessen’s Techno-Optimism Manifesto
SUMMARY: The content is a manifesto of Techno-Optimism by Marc Andreessen. It discusses the transformative power of technology in human progress, arguing that it is…
2023 OWASP Top-10 Series: Wrap Up
Over the past several months, we’ve taken a journey through the new 2023 OWASP API Security Top-10 list. In the previous 12 weekly posts, we’ve…
How Ethical Hackers Are Securing Elections
Coordinated Vulnerability Disclosure (CVD) or Vulnerability Disclosure Policies (VDP) for technology are key components of a security strategy that builds trust with users and stakeholders.…
Meet 5 Young Hackers Hacking For Good
Recently, a cybercriminal gang targeted the Las Vegas casino scene by extracting an eight-figure ransom from Caesars Entertainment and bringing slot machines to a halt…
ZAP 2.14 Review ⚡️
생각보다 엄청 빠른 주기로 ZAP 2.14 릴리즈가 발표되었습니다 🎉⚡️ 아마도 최근에 ZAP은 OWASP를 나와 별도의 브랜딩을 가진것이 큰 영향을 줬을거라 생각합니다. ZAP 2.13이 나온지 오래되지…
See the current state of security in your org
How do you see the current state of security in your organization when security is constantly evolving? New assets, vulnerabilities, and even human errors like…
XSS via reportError
reportError란 함수를 아시나요? Chrome 95, Firefox 93 버전에 추가된 글로벌 메소드로 JS의 uncaught exception을 콘솔이나 글로벌 이벤트 핸들러로 넘겨주는 기능을 수행합니다. PortSwigger 측에서 reportError 함수를…