Measuring productivity with GitHub issues
How long does it take for a bug to get squashed, or for a pull request to be merged? What kind of issues take the…
Category: Mix
Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!
Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances! Source link
How To Start Bug Bounty For Beginners
So you want to be a hack super star? And live large, a big house, five cars. Let me preface this by saying that there…
When Static Is Not Actually Static – Assetnote
Over the last ten years, we have seen the industrialization of the content management space. A decade ago, it felt like every individual and business…
Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.com
This post is an overview of a mobile app MitM vulnerability I’ve found several times in the real world. I’ll explain how an attacker can…
Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHub
Impact When using --userns-remap, if the root user in the remapped namespace has access to the host filesystem they can modify files under /var/lib/docker/ that…
VMware NSX Manager Vulnerabilities being actively exploited
The Wallarm Detect team has found exploit attempts in the wild of CVE-2022-31678 and CVE-2021-39144. The original vulnerabilities were found in VMware NSX Manager at…
How to conduct a basic security code review | Security Simplified
How to conduct a basic security code review | Security Simplified Source link
Two solutions for the January 2021 Initigriti XSS Challenge
Two solutions for the January 2021 Initigriti XSS Challenge Source link
[tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC Metrics
Hey there, I hope you’ve been doing well! Focusing on the Right Stuff I was going to write you a lovely intro, but unfortunately I’m…
Raidforums owner arrested 🚓 FBI have taken on the case 🚓
Raidforums owner arrested 🚓 FBI have taken on the case 🚓 Source link
CVE-2023-27537: HSTS double-free
curl disclosed a bug submitted by kurohiro: https://hackerone.com/reports/1897203 Source link