Collaborate Disseminate
I read about a couple of layer 2 protections against dhcp starving, mac and ip spoofing- ip guard, dhcp snooping and dynamic arp inspection.
Are there any cons or vulnerabilies which enable bypassing them or are they safe to use?
I have… Continue reading What are the cons of dhcp snooping, dynamic arp inspection and ip guard?
CDN are said to absorb and mitigate the Denial of Service and DDOS attacks. Consider an application that uses a CDN provider to deliver its content. So if an attacker tries to bring down such an application using DOS or DDOS,… Continue reading Does a DDOS attack on an application using CDN have to first bring down all the involved CDN servers to affect the application’s availability?
Are there any NDEF message smuggling attacks (like http smuggling attack)?
When I say it, I mean that I have a full control on the NFC packet. Is it possible to inject another packet into a NFC payload or something.
Is it possible for an attacker to forge a certificate signing request so he will be able to impersonate someone else ? (by stealing the csr before it gets signed and changing it)
Continue reading is it possible for an attacker to change a csr in x509?
I have read about the option to create certificates for signing codes and time stamping. why do we need both of them?
I understand that it helps me when I need to increase the validity of my code, but why not using only one … Continue reading why is it necessary to have both code signing and time stamping certificates?
I have noticed there are some policy features in x509 certificates. Are there some ways to enforce these policies in the certificates?
For example, let’s take a certificate with imaginary oid 1.2.3 which means “public key l… Continue reading Is there a way to enforce policies in x509 certificates?
I have walked through the different fields of x509 certificates and came across some fields which enable to limit the usage of the certificate (for example for certain domains). Is it possible to limit which public key size… Continue reading How can I limit which key sizes and signature algorithm of the next certificate in the certificate chain are allowed?
I have walked through the different fields of x509 certificates and came across some fields which enable to limit the usage of the certificate (for example for certain domains). Is it possible to limit which public key size… Continue reading How can I limit which key sizes and signature algorithm of the next certificate in the certificate chain are allowed?
I have a question about Hmac. I know that hmac are hard to reverse and get its key. however, given a mac oracle, can’t the attacker drop the hmac value and put his own?
For example, say that we want to send the word “hello”… Continue reading Can an attacker drop previous hmac value and put his own using an oracle?
I have angular 1.5, get information from a form and print it with a sandbox {{vm.name}}. I have tried to enter 1+1 in the form and got 1+1 instead of 2 in the sandbox. my guess is that it is printed into the sandbox as a st… Continue reading How can I escape a string in sandbox-angular 1.5?