Hacker News
- Don't publicly expose .git (2015) https://en.internetwache.org/dont-publicly-expose-git-or-how-we-downloaded-your-websites-sourcecode-an-analysis-of-alexas-1m-28-07-2015/ 86 comments
- Don't publicly expose .git or how we downloaded your website's sourcecode (2015) https://en.internetwache.org/dont-publicly-expose-git-or-how-we-downloaded-your-websites-sourcecode-an-analysis-of-alexas-1m-28-07-2015/ 59 comments programming
Linking pages
- Git ransom campaign incident report | GitLab https://about.gitlab.com/2019/05/14/git-ransom-campaign-incident-report-atlassian-bitbucket-github-gitlab/ 76 comments
- From CTFs to Bug Bounty Booty. How I scored some fancy shirts | by Benji Tobias | Medium https://medium.com/@benjitobias/from-ctfs-to-bug-bounty-booty-81bab999b70d 12 comments
- A browser extension to download site sources (with /.git/) | by Davide | Medium https://medium.com/@davtur19/a-browser-extension-to-download-site-sources-with-git-e18442da2b62 6 comments
- HTTPS: Private Keys on Web Servers - Golem.de https://www.golem.de/news/https-private-keys-on-web-servers-1707-128862.html 3 comments
- GitHub - agrim123/reading-material: List of some useful blogs, books, courses, papers etc. https://github.com/agrim123/reading-material 0 comments
- Scanning the Alexa Top 1M for .DS_Store files - Internetwache - A secure internet is our concern https://en.internetwache.org/scanning-the-alexa-top-1m-for-ds-store-files-12-03-2018/ 0 comments
- #BugBounty — How I was able to download the Source Code of India’s Largest Telecom Service Provider including dozens of more popular websites! | by Avinash Jain (@logicbomb) | Medium https://medium.com/@logicbomb_1/bugbounty-how-i-was-able-to-download-the-source-code-of-indias-largest-telecom-service-52cf5c5640a1 0 comments
- 126: Ransom Attacks Hit Git, Managing Many Clusters, Kubernetes Failure Stories, Ansible-based Kubernetes Operators, Deadlines are Horrible, & More - DevOps'ish https://devopsish.com/126/ 0 comments