Hacker News
- Get Free Security Audit If You Replace Passwords https://sakurity.com/securelogin 2 comments
- Building a Botnet on ServiceWorkers http://sakurity.com/blog/2016/12/10/serviceworker_botnet.html 7 comments
- Why You Don't Need 2 Factor Authentication http://sakurity.com/blog/2015/07/18/2fa.html 5 comments
- Mongo BSON Injection: Ruby Regexps Strike Again http://sakurity.com/blog/2015/06/04/mongo_ruby_regexp.html 50 comments
- Hacking Starbucks for unlimited coffee http://sakurity.com/blog/2015/05/21/starbucks.html 81 comments
- Hacking Starbucks to get unlimited coffee http://sakurity.com/blog/2015/05/21/starbucks.html?2= 2 comments
- Hacking Starbucks to get unlimited coffee http://sakurity.com/blog/2015/05/21/starbucks.html 2 comments
- How to Fix Authentication: Email as a Password Manager http://sakurity.com/blog/2015/04/10/email_password_manager.html 2 comments
- How to Fix Authentication: Email as a Password Manager http://sakurity.com/blog/2015/04/10/email_password_manager.html 20 comments
- Slack. Or why you need to hash reset_token like password http://sakurity.com/blog/2015/03/27/slack_or_reset_token_hashing.html 2 comments
- How “../sms” could bypass Authy everywhere http://sakurity.com/blog/2015/03/15/authy_bypass.html?2= 2 comments
- Your API Authentication is insecure, and we'll tell you why http://sakurity.com/blog/2015/03/04/hybrid_api_auth.html 3 comments
- Security report for Peatio Bitcoin exchange [pdf] http://sakurity.com/peatio.pdf 2 comments
- Hacking a Bitcoin exchange – the hard way http://sakurity.com/blog/2015/01/10/hacking-bitcoin-exchanger.html 3 comments
- Affordable security audit for Rails apps http://www.sakurity.com/ 4 comments
Lobsters
- Why You Don't Need 2 Factor Authentication http://sakurity.com/blog/2015/07/18/2fa.html 11 comments security
- Building Botnet on ServiceWorkers https://sakurity.com/blog/2016/12/10/serviceworker_botnet.html 11 comments programming
- Building Botnet on ServiceWorkers http://sakurity.com/blog/2016/12/10/serviceworker_botnet.html 7 comments netsec
- Using Appcache and ServiceWorker for Evil http://sakurity.com/blog/2015/08/13/middlekit.html 4 comments netsec
- Puzzle #2: Really Curious XSS in Rails http://sakurity.com/blog/2015/06/25/puzzle2.html 5 comments ruby
- Mongo BSON Injection: Ruby Regexps Strike Again http://sakurity.com/blog/2015/06/04/mongo_ruby_regexp.html 3 comments ruby
- Hacking Starbucks for unlimited coffee http://sakurity.com/blog/2015/05/21/starbucks.html 243 comments programming
- Man finds vulnerability in Starbucks's gift card system, responsibly discloses bug to Starbucks. Corporate responds by accusing him of "malicious actions" http://sakurity.com/blog/2015/05/21/starbucks.html 1592 comments technology
- Hacking Starbucks to get unlimited coffee http://sakurity.com/blog/2015/05/21/starbucks.html 160 comments netsec
- How to fix Authentication: Email as a Password Manager http://sakurity.com/blog/2015/04/10/email_password_manager.html? 4 comments netsec
- How "../sms" could bypass Authy 2 Factor Authentication http://sakurity.com/blog/2015/03/15/authy_bypass.html/ 17 comments programming
- How "../sms" could bypass Authy 2 Factor Authentication http://sakurity.com/blog/2015/03/15/authy_bypass.html 3 comments ruby
- How "../sms" could bypass Authy 2 Factor Authentication http://sakurity.com/blog/2015/03/15/authy_bypass.html 27 comments netsec
- RECONNECT - critical bug in websites with Facebook Login http://sakurity.com/blog/2015/03/05/reconnect.html 3 comments netsec
- Format Injection Vulnerability in Duo Security Web SDK http://sakurity.com/blog/2015/03/03/duo_format_injection.html 11 comments netsec
- Using Ruby's open-uri? Check your code - you're playing with fire! http://sakurity.com/blog/2015/02/28/openuri.html? 6 comments programming
- Using open-uri? One step away from RCE http://sakurity.com/blog/2015/02/28/openuri.html 14 comments ruby
- Using Ruby's open-uri? One step away from RCE http://sakurity.com/blog/2015/02/28/openuri.html 33 comments netsec
- QR Channel - the most secure way to transfer data http://sakurity.com/qrchannel 4 comments netsec
- Hacking a Bitcoin Exchange http://sakurity.com/blog/2015/01/10/hacking-bitcoin-exchanger.html 4 comments netsec
- OTP bruteforce calculator http://sakurity.com/otp 2 comments netsec
Linking pages
- Researcher who exploits bug in Starbucks gift cards gets rebuke, not love | Ars Technica http://arstechnica.com/security/2015/05/researcher-who-exploits-bug-in-starbucks-gift-cards-gets-rebuke-not-love/ 8 comments
- GitHub - gnijuohz/awesome-developers: A list of awesome developers https://github.com/gnijuohz/awesome-developers 2 comments
- How to think about security at startups: It’s a never ending job | by Sunil Sadasivan | Medium https://medium.com/@sunils34/how-to-think-about-security-at-startups-its-a-never-ending-job-a294cb7a2fc3 0 comments
- Google's No Captcha reCaptchas may not be as bot-proof as we thought | VentureBeat http://venturebeat.com/2014/12/24/googles-no-captcha-recaptchas-may-not-be-as-bot-proof-as-we-thought/ 0 comments