-
-
Stored XSS using SVG
- 262 Views
- 1 Likes
- 1 Comments
SVG is a popular image format. But many users don't know that it can run arbitrary JS code in the browser
-
String slicing in Rust
- 64 Views
- 1 Likes
- 0 Comments
Used to string slicing in Python, or the `.slice` method in JS? Rust will be easy to pick up, then!
-
Web Security with Python | Command Injection
- 138 Views
- 0 Likes
- 0 Comments
What if you want to rely on user-supplied input to run a command on your system? In this cast, we'll see how a naive developer introduces a vulnerabili...
-
Web Security with Python | Defacing pages with CSS Injection
- 420 Views
- 1 Likes
- 0 Comments
Remember in 2006 when the coolest hack imaginable was putting the words "YOU'VE BEEN HAXXORED" on your favorite forum? Well we're taking a trip to the...
-
Web Security with Python | Denial of Service
- 136 Views
- 0 Likes
- 0 Comments
From the halcyon days of Anonymous hacktivism, to today's blackmailers taking down services for ransom, DoS is a perennial weapon in the blackhat arsen...
-
Web Security with Python | Dictionary Attack
- 343 Views
- 0 Likes
- 0 Comments
The darling hack of activists and blackmailers alike.
-
Web Security with Python | GET query (in)security
- 116 Views
- 0 Likes
- 0 Comments
GET and POST are more than just semantics. For security engineers, choosing one or the other has real safety consequences. https://cwe.mitre.org/data/...
-
Web Security with Python | Insecure Direct Object References
- 194 Views
- 0 Likes
- 0 Comments
Let's say you log into a site and load your messages. You notice the messages each have an ID number. What if you could put in a different ID number, a...
-
Web Security with Python | Introduction
- 138 Views
- 0 Likes
- 0 Comments
Meet a jr dev, hacker, and sr engineer on their quest to make a secure Python web app!