HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
91.
▲
Stealing passwords from infosec Mastodon – without bypassing CSP
portswigger.net
1 comment
4 years ago
nateb2022
4 points
92.
▲
Mastodon vulnerable to multiple system configuration problems
portswigger.net
1 comment
4 years ago
feross
4 points
93.
▲
Google Pixel screen-lock hack earns researcher $70k
portswigger.net
1 comment
4 years ago
feross
4 points
94.
▲
Upcoming ‘critical’ OpenSSL update prompts feverish speculation
portswigger.net
1 comment
4 years ago
feross
4 points
95.
▲
Smuggling hidden backdoors into JavaScript with homoglyphs and invisible Unicode
portswigger.net
1 comment
5 years ago
feross
4 points
96.
▲
TrojanNet – a simple yet effective attack on machine learning models
portswigger.net
1 comment
6 years ago
URfejk
4 points
97.
▲
F5 fixes high severity RCE bug in BIG-IP, BIG-IQ devices
portswigger.net
discuss
4 years ago
feross
4 points
98.
▲
Stealing passwords from infosec Mastodon – without bypassing CSP
portswigger.net
discuss
4 years ago
groffee
4 points
99.
▲
Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling
portswigger.net
discuss
4 years ago
Techbrunch
4 points
100.
▲
Cisco router flaw gives patient attackers full access to small business networks
portswigger.net
discuss
4 years ago
feross
4 points
101.
▲
Authentication bypass bug in Nextauth.js could allow email account takeover
portswigger.net
discuss
4 years ago
feross
4 points
102.
▲
Tor Browser 11.5 release enables users to automatically circumvent censorship
portswigger.net
discuss
4 years ago
feross
4 points
103.
▲
Internet scans find 1.6M secrets leaked by websites
portswigger.net
discuss
4 years ago
feross
4 points
104.
▲
GitHub offers post-mortem on recent security breach
portswigger.net
discuss
4 years ago
feross
4 points
105.
▲
Authorities seize Hydra servers in bust against darknet cybercrime marketplace
portswigger.net
discuss
4 years ago
feross
4 points
106.
▲
Cyber-attack at Vodafone Portugal knocks mobile network services offline
portswigger.net
discuss
4 years ago
wepple
4 points
107.
▲
European Commission launches new open source software bug bounty program
portswigger.net
discuss
4 years ago
feross
4 points
108.
▲
Data breach at New Mexico healthcare business impacts 62,000 state residents
portswigger.net
discuss
5 years ago
feross
4 points
109.
▲
Spook.js – New side-channel attack can bypass Google Chrome’s protections
portswigger.net
discuss
5 years ago
feross
4 points
110.
▲
Black Hat USA: HTTP/2 flaws expose organizations to fresh wave of request
portswigger.net
discuss
5 years ago
feross
4 points
111.
▲
Backslash Powered Scanning: Hunting Unknown Vulnerability Classes
blog.portswigger.net
discuss
10 years ago
cujanovic
4 points
112.
▲
Safari is hot-linking images to semi-random websites
portswigger.net
1 comment
4 years ago
hackvertor
3 points
113.
▲
GitHub Actions flaw that allowed code to be approved without review is addressed
portswigger.net
1 comment
4 years ago
feross
3 points
114.
▲
Researchers discover Log4j-like flaw in H2 database console
portswigger.net
1 comment
4 years ago
feross
3 points
115.
▲
Hong Kong’s anti-doxxing law comes into force despite human rights criticism
portswigger.net
1 comment
5 years ago
feross
3 points
116.
▲
Black Hat 2021: Zero-days, ransoms, supply chains, oh my
portswigger.net
1 comment
5 years ago
feross
3 points
117.
▲
Xerox legal threat silences researcher at Infiltrate security conference
portswigger.net
1 comment
5 years ago
_notreallyme_
3 points
118.
▲
Detecting and exploiting path-relative stylesheet import vulnerabilities
blog.portswigger.net
discuss
11 years ago
mbrubeck
3 points
119.
▲
The Fragile Lock: Novel Bypasses for SAML Authentication
portswigger.net
discuss
6 months ago
todsacerdoti
3 points
120.
▲
HTTP desync attacks: request smuggling reborn
portswigger.net
discuss
8 months ago
fanf2
3 points
More