Read AI/M Weekly
AI Weekly Newsletter, Kala. Curated AI news, tutorials, tools and more - Join thousands of other readers, 100% free, unsubscribe anytime.
Posts from the community tagged with cybersecurity...
Story
#informa... #andriod #DevSecO... #cyberse... #Infosec
@tutorialboy24
shared a post, 5 months, 1 week ago
tut
Spring Actuator - Stealing Secrets Using Spring Actuators - Part 1:
Spring is a set of frameworks for developing Applications in Java. It is widely used, and so it is not unusual to encounter it during a security audit or penetration test. One of its features that I recently encountered during a Whitebox audit is actuators. In this series of articles, I will use the..
Story
#informa... #Infosec #cyberse... #Securit... #DevSecO...
@tutorialboy24
shared a post, 5 months, 1 week ago
tut
Turning cookie based XSS into account takeover
EpilogueI reported the exploitation scenario and was rewarded €500, as the impact was high. Be patient, don’t give up, and think out of the box. In this case, I used the company’s service to exploit the bug.Source :- https://tutorialboy24.blogspot.com/2022/09/turning-cookie-based-xss-into-account.ht..
Story
#cyberse... #aws #DevSecO... #Securit...
@tutorialboy24
shared a post, 5 months, 1 week ago
tut
Exploiting Amazon Simple Notification Service Improper Validation of SigningCertUrl
IntroductionCountless applications rely on Amazon Web Services’ Simple Notification Service for application-to-application communication such as webhooks and callbacks. To verify the authenticity of these messages, these projects use certificate-based signature validation based on the SigningCertURL..
Story
#Infosec #cyberse... #Securit... #Securit...
@tutorialboy24
shared a post, 6 months, 2 weeks ago
tut
A Detailed Talk about K8S Cluster Security from the Perspective of Attackers (Part 1)
IntroductionAs a representative of cloud-native management and orchestration systems, Kubernetes (K8S for short) is receiving more and more attention. A report [1] shows that 96% of organizations are using or evaluating K8S, and its market share in production environments is Visible.The functions of..
Story
#cyberse... #Artific... #Machine...
@anasnasim12
shared a post, 9 months, 3 weeks ago
Student
Machine Learning for Cybersecurity
Everything about Machine Learning for Cybersecurity and in-between.
Story
BridgeCrew Team
@bridgecrewio
shared a post, 1 year, 1 month ago
Vulnerabilities vs. Security Misconfigurations: An Essential Primer
When you hear the term “security breach,” chances are that risks like malware or ransomware attacks come to mind. These exploits tend to feature in headlines about major cybersecurity attacks.
Story
@adetomiwaj
shared a post, 1 year, 1 month ago
Methodology for Malware Static analysis: Portable Executable (PE) files
Malware analysis determines if a program/file is malicious. There are two phases in malware analysis.
Story
@cyberpotato
shared a post, 1 year, 2 months ago
Four Questions Your Information Security Team Should be Asking
The key to succeeding in information security and cyber threat intelligence is recognizing what you’re dealing with, and adapting accordingly.
Story
@kyle_hemsley
shared a post, 1 year, 3 months ago
Securing Microsoft Azure AD with FIDO2 Keys — Passwordless Authentication
Azure AD is a powerful cloud-based IdP from Microsoft that many organizations have “free” access to through their M365 subscriptions for Office 365 / Exchange Online.
Story
@thecybermutt
shared a post, 1 year, 3 months ago
Deciphering A Caesar Cipher with Python
Caesar ciphers map out characters to other characters based on a number key chosen by the designer of the Caesar cipher.
