Category: Mix

21
Mar
2023

Measuring productivity with GitHub issues

How long does it take for a bug to get squashed, or for a pull request to be merged? What…

Share: X : Measuring productivity with GitHub issuesFacebook : Measuring productivity with GitHub issuesLinkedin : Measuring productivity with GitHub issuesReddit : Measuring productivity with GitHub issuesTelegram : Measuring productivity with GitHub issuesWhatsApp : Measuring productivity with GitHub issuesEmail : Measuring productivity with GitHub issues
Axiom Demo - Resolving 6 million domains in 5 minutes with 100 instances!
21
Mar
2023

Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!

Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances! Source link

Share: X : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!Facebook : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!Linkedin : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!Reddit : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!Telegram : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!WhatsApp : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!Email : Axiom Demo – Resolving 6 million domains in 5 minutes with 100 instances!
How To Start Bug Bounty For Beginners
21
Mar
2023

How To Start Bug Bounty For Beginners

So you want to be a hack super star? And live large, a big house, five cars. Let me preface…

Share: X : How To Start Bug Bounty For BeginnersFacebook : How To Start Bug Bounty For BeginnersLinkedin : How To Start Bug Bounty For BeginnersReddit : How To Start Bug Bounty For BeginnersTelegram : How To Start Bug Bounty For BeginnersWhatsApp : How To Start Bug Bounty For BeginnersEmail : How To Start Bug Bounty For Beginners
When Static Is Not Actually Static – Assetnote
21
Mar
2023

When Static Is Not Actually Static – Assetnote

Over the last ten years, we have seen the industrialization of the content management space. A decade ago, it felt…

Share: X : When Static Is Not Actually Static – AssetnoteFacebook : When Static Is Not Actually Static – AssetnoteLinkedin : When Static Is Not Actually Static – AssetnoteReddit : When Static Is Not Actually Static – AssetnoteTelegram : When Static Is Not Actually Static – AssetnoteWhatsApp : When Static Is Not Actually Static – AssetnoteEmail : When Static Is Not Actually Static – Assetnote
uploaded JSP executed on the server
21
Mar
2023

Apache Tomcat RCE if readonly set to false (CVE-2017-12617)

The Vulnerability The Apache Tomcat team announced today that all Tomcat versions before 9.0.1 (Beta), 8.5.23, 8.0.47 and 7.0.82 contain…

Share: X : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)Facebook : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)Linkedin : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)Reddit : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)Telegram : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)WhatsApp : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)Email : Apache Tomcat RCE if readonly set to false (CVE-2017-12617)
Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.com
21
Mar
2023

Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.com

This post is an overview of a mobile app MitM vulnerability I’ve found several times in the real world. I’ll…

Share: X : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.comFacebook : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.comLinkedin : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.comReddit : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.comTelegram : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.comWhatsApp : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.comEmail : Exploiting SSL Vulnerabilities in Mobile Apps – allysonomalley.com
Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHub
20
Mar
2023

Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHub

Impact When using –userns-remap, if the root user in the remapped namespace has access to the host filesystem they can…

Share: X : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHubFacebook : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHubLinkedin : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHubReddit : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHubTelegram : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHubWhatsApp : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHubEmail : Access to remapped root allows privilege escalation to real root · Advisory · moby/moby · GitHub
Compromising an unreachable Solr server with CVE-2013-6397
20
Mar
2023

Compromising an unreachable Solr server with CVE-2013-6397

Compromising an unreachable Solr server with CVE-2013-6397 I recently did a pentest where I compromised a Solr server located several…

Share: X : Compromising an unreachable Solr server with CVE-2013-6397Facebook : Compromising an unreachable Solr server with CVE-2013-6397Linkedin : Compromising an unreachable Solr server with CVE-2013-6397Reddit : Compromising an unreachable Solr server with CVE-2013-6397Telegram : Compromising an unreachable Solr server with CVE-2013-6397WhatsApp : Compromising an unreachable Solr server with CVE-2013-6397Email : Compromising an unreachable Solr server with CVE-2013-6397
VMware NSX Manager Vulnerabilities being actively exploited
20
Mar
2023

VMware NSX Manager Vulnerabilities being actively exploited

The Wallarm Detect team has found exploit attempts in the wild of CVE-2022-31678 and CVE-2021-39144. The original vulnerabilities were found…

Share: X : VMware NSX Manager Vulnerabilities being actively exploitedFacebook : VMware NSX Manager Vulnerabilities being actively exploitedLinkedin : VMware NSX Manager Vulnerabilities being actively exploitedReddit : VMware NSX Manager Vulnerabilities being actively exploitedTelegram : VMware NSX Manager Vulnerabilities being actively exploitedWhatsApp : VMware NSX Manager Vulnerabilities being actively exploitedEmail : VMware NSX Manager Vulnerabilities being actively exploited
How to conduct a basic security code review | Security Simplified
20
Mar
2023

How to conduct a basic security code review | Security Simplified

How to conduct a basic security code review | Security Simplified Source link

Share: X : How to conduct a basic security code review | Security SimplifiedFacebook : How to conduct a basic security code review | Security SimplifiedLinkedin : How to conduct a basic security code review | Security SimplifiedReddit : How to conduct a basic security code review | Security SimplifiedTelegram : How to conduct a basic security code review | Security SimplifiedWhatsApp : How to conduct a basic security code review | Security SimplifiedEmail : How to conduct a basic security code review | Security Simplified
Two solutions for the January 2021 Initigriti XSS Challenge
20
Mar
2023

Two solutions for the January 2021 Initigriti XSS Challenge

Two solutions for the January 2021 Initigriti XSS Challenge Source link

Share: X : Two solutions for the January 2021 Initigriti XSS ChallengeFacebook : Two solutions for the January 2021 Initigriti XSS ChallengeLinkedin : Two solutions for the January 2021 Initigriti XSS ChallengeReddit : Two solutions for the January 2021 Initigriti XSS ChallengeTelegram : Two solutions for the January 2021 Initigriti XSS ChallengeWhatsApp : Two solutions for the January 2021 Initigriti XSS ChallengeEmail : Two solutions for the January 2021 Initigriti XSS Challenge
[tl;dr sec] #170 - Prototype Pollution, Fuzzing, SOC Metrics
20
Mar
2023

[tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC Metrics

Hey there, I hope you’ve been doing well! Focusing on the Right Stuff I was going to write you a…

Share: X : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC MetricsFacebook : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC MetricsLinkedin : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC MetricsReddit : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC MetricsTelegram : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC MetricsWhatsApp : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC MetricsEmail : [tl;dr sec] #170 – Prototype Pollution, Fuzzing, SOC Metrics