HK
Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Top
New
Best
Ask
Show
Jobs
Request
1.
▲
PSA: The Rails SQL injection vuln. is more dangerous than previously indicated
discuss
13 years ago
espes
6 points
2.
▲
Better control of HN possible?
discuss
14 years ago
lbcadden3
2 points
3.
▲
Researcher discloses security bug because Twitter doesn't reward bounty hunters
discuss
13 years ago
aatteka
1 points
4.
▲
How I hacked Github again
homakov.blogspot.com
190 comments
12 years ago
zhuzhuor
911 points
5.
▲
"Egor, stop hacking Github"
homakov.blogspot.com
111 comments
14 years ago
llambda
446 points
6.
▲
Cookie Bomb or Let's Break the Internet
homakov.blogspot.com
75 comments
12 years ago
paulmillr
362 points
7.
▲
How github was hacked
homakov.blogspot.com
71 comments
14 years ago
bluemoon
348 points
8.
▲
Did GitHub Suspend Egor Homakov account?
homakov.blogspot.com
120 comments
14 years ago
VuongN
329 points
9.
▲
Hacking Github with Webkit
homakov.blogspot.com
78 comments
13 years ago
homakov
301 points
10.
▲
How we hacked Facebook with OAuth2 and Chrome bugs
homakov.blogspot.com
49 comments
13 years ago
maccman
299 points
11.
▲
CSRF in Doorkeeper OAuth2 gem
homakov.blogspot.com
79 comments
12 years ago
homakov
249 points
12.
▲
The No CAPTCHA problem
homakov.blogspot.com
96 comments
12 years ago
homakov
215 points
13.
▲
Two "WontFix" vulnerabilities in Facebook Connect
homakov.blogspot.com
35 comments
12 years ago
homakov
188 points
14.
▲
#1 CSRF Is A Vulnerability In All Browsers
homakov.blogspot.com
238 comments
14 years ago
homakov
183 points
15.
▲
How to send DMs on Twitter without permission
homakov.blogspot.com
56 comments
13 years ago
brodd
167 points
16.
▲
RJS leaking vulnerability in multiple Rails applications
homakov.blogspot.com
67 comments
13 years ago
homakov
145 points
17.
▲
OAuth1, OAuth2, OAuth..? (2013)
homakov.blogspot.com
45 comments
11 years ago
neverminder
139 points
18.
▲
New Paypal gateway UI susceptible to spoofing
homakov.blogspot.com
51 comments
12 years ago
dsr12
120 points
19.
▲
Account hijacking on MtGox
homakov.blogspot.com
37 comments
12 years ago
homakov
117 points
20.
▲
Achilles Heel of OAuth or Why Facebook Adds #_=_
homakov.blogspot.com
33 comments
13 years ago
homakov
113 points
21.
▲
I Can Detect Your Facebook Username, Using W3C Standard
homakov.blogspot.com
57 comments
13 years ago
homakov
96 points
22.
▲
How To Cheat On Facebook Apps Permissions
homakov.blogspot.com
32 comments
14 years ago
homakov
96 points
23.
▲
Token Fixation in Paypal
homakov.blogspot.com
15 comments
12 years ago
johnterry_cfc
84 points
24.
▲
Whitelist Your Routes, "match" is Evil
homakov.blogspot.com
45 comments
14 years ago
homakov
76 points
25.
▲
Googleusercontent.com fun
homakov.blogspot.com.es
39 comments
13 years ago
homakov
64 points
26.
▲
HTML5 Sandbox - a bad idea
homakov.blogspot.com
46 comments
13 years ago
homakov
63 points
27.
▲
Cross Origin Madness
homakov.blogspot.com
14 comments
13 years ago
homakov
54 points
28.
▲
Timing attack, 6.66% faster
homakov.blogspot.com
19 comments
12 years ago
jessaustin
53 points
29.
▲
Bitstamp problem and warm wallets
homakov.blogspot.com
20 comments
11 years ago
homakov
42 points
30.
▲
OAuth2.a or Let's Just Fix It
homakov.blogspot.com
15 comments
14 years ago
homakov
37 points
More