Heykuki News
Top
New
Best
Ask
Show
Jobs
Toggle theme
Login
Top
New
Best
Ask
Show
Jobs
121.
▲
HTTP/1.1 must die: the desync endgame
(portswigger.net)
3 points
jsnell
10 months ago
discuss
122.
▲
Top web hacking techniques of 2024
(portswigger.net)
3 points
chillax
a year ago
discuss
123.
▲
Listen to the whispers: web timing attacks that work
(portswigger.net)
3 points
chillax
2 years ago
discuss
124.
▲
uBlock, I exfiltrate: exploiting ad blockers with CSS (2021)
(portswigger.net)
3 points
ReadCarlBarks
2 years ago
discuss
125.
▲
Indian transport ministry flaws potentially allowed creation of counterfeit
(portswigger.net)
3 points
feross
3 years ago
discuss
126.
▲
Password managers: A rough guide to enterprise secret platforms
(portswigger.net)
3 points
feross
3 years ago
discuss
127.
▲
Cisco ClamAV anti-malware scanner vulnerable to serious security flaw
(portswigger.net)
3 points
feross
3 years ago
discuss
128.
▲
Portswigger's top web hacking techniques of 2022
(portswigger.net)
3 points
arunsivadasan
3 years ago
discuss
129.
▲
AWS patches bypass bug in CloudTrail API monitoring tool
(portswigger.net)
3 points
feross
3 years ago
discuss
130.
▲
New tool protects against vulnerabilities in popular file converter ImageMagick
(portswigger.net)
3 points
feross
3 years ago
discuss
131.
▲
Urlscan.io API unwittingly leaks sensitive URLs, data
(portswigger.net)
3 points
feross
4 years ago
discuss
132.
▲
The latest bug bounty programs for November 2022
(portswigger.net)
3 points
Amorymeltzer
4 years ago
discuss
133.
▲
Login spoofing issue in GitHub nets researcher $10k bug bounty reward
(portswigger.net)
3 points
feross
4 years ago
discuss
134.
▲
Security certification body (ISC)² defends ‘undemocratic’ bylaw changes
(portswigger.net)
3 points
feross
4 years ago
discuss
135.
▲
Patching common vulnerabilities at scale: project promises bulk pull requests
(portswigger.net)
3 points
feross
4 years ago
discuss
136.
▲
The seventh way to call a JavaScript function without parentheses
(portswigger.net)
3 points
kiyanwang
4 years ago
discuss
137.
▲
Graph-based JavaScript bug scanner discovers more than 100 zero-day
(portswigger.net)
3 points
feross
4 years ago
discuss
138.
▲
Swiss Post relaunches e-voting bug bounty program
(portswigger.net)
3 points
feross
4 years ago
discuss
139.
▲
Healthcare provider Novant issues data breach warning after site tracking pixels
(portswigger.net)
3 points
feross
4 years ago
discuss
140.
▲
Browser-Powered Desync Attacks: A New Frontier in HTTP Request Smuggling
(portswigger.net)
3 points
todsacerdoti
4 years ago
discuss
141.
▲
Jenkins security: Unpatched XSS, CSRF bugs included in latest plugin advisory
(portswigger.net)
3 points
feross
4 years ago
discuss
142.
▲
Bypassing Firefox's HTML Sanitizer API
(portswigger.net)
3 points
psydvl
4 years ago
discuss
143.
▲
Reddit patches CSRF vulnerability that forced users to view NSFW content
(portswigger.net)
3 points
feross
4 years ago
discuss
144.
▲
Indian VPN providers resist incoming data-logging law
(portswigger.net)
3 points
feross
4 years ago
discuss
145.
▲
Bug Bounty Radar // The latest bug bounty programs for June 2022
(portswigger.net)
3 points
feross
4 years ago
discuss
146.
▲
Pwn2Own Vancouver: 15th annual hacking event pays out $1.2m for high-impact
(portswigger.net)
3 points
feross
4 years ago
discuss
147.
▲
RuTube hack: Russian video platform denies loss of source code following
(portswigger.net)
3 points
feross
4 years ago
discuss
148.
▲
Unpatched plugins threaten millions of WordPress websites
(portswigger.net)
3 points
feross
4 years ago
discuss
149.
▲
Prison service for England and Wales recorded more than 2k data breaches over
(portswigger.net)
3 points
feross
4 years ago
discuss
150.
▲
Exploit chain allows security researchers to pwn phone system
(portswigger.net)
3 points
carride
4 years ago
discuss
More