Collaborate Disseminate
I’m testing a web application and I found a XSS vulnerability. I can inject schemas like data:// or tel:// but they have blocked the javascript:// schema. On current browsers the origin is null if I use data:// so data:// is not good.
I ha… Continue reading Cross Site Scripting with URL protocol schema javascript
my goal is to upload photos such that I preserve anonymity (not so concerned about WHAT is being uploaded, but trying to conceal WHO is doing so).
I came up with the idea of taking a screenshot of the photo on my computer, pasting it in MS… Continue reading I’d like to upload photos anonymously
I’ve been reading about HTTP Request Smuggling attacks and I’ve come across a situation that I don’t fully understand. I’ve been studying the report by James Kettle where he describes an attack against Netflix’s servers (https://portswigge… Continue reading HTTP Request Smuggling Exploit – Need Clarification on Behavior of the ‘Host’ Header
I logged into a private google account on a work laptop. I switched passwords and anything a few seconds later. Could my employer still see and access new activity on my google account even though I logged out and switched passwords? I mea… Continue reading Can my employer still access my account after signing out from work pc and switching passwords?
So I did this post before on a guest account but I had further questions so now I’m posing it on a real one.
Can my employer see my private google history/”google activity” if I didn’t do anything on my work pc? For some context I logged i… Continue reading Can my employer see my private google account history when just logging in and out in a matter of 10 seconds on a work laptop (REPOSTED)
Can my employer see my private google history/”google activity” if I didn’t do anything on my work pc?
For some context I logged in to my private google account on my work computer just to send a pdf file I couldn’t send on my phone. I log… Continue reading Can my employer see my private google account history when just logging in and out in a matter of 10 seconds on a work laptop
I ran a port scan
nmap x.x.x.x -sV
I got the following result
Host is up (0.040s latency).
Not shown: 996 filtered tcp ports (no-response)
PORT STATE SERVICE VERSION
80/tcp open http?
443/tcp open https?
5060/tcp open sip?
8… Continue reading Nmap -sV command not working [closed]
Hypothetically speaking, if an attacker finds an anonymous FTP login what’s the worse they can possibly do other than the obvious impact of gaining access to the files via FTP?
Continue reading What’s the worse an attacker could do with anonymous FTP login? [closed]
I am very well aware of the reason that e-mail is such a nightmare/mess today, in so many ways. This is not what I’m asking about.
I’m wondering why it was originally decided to make e-mail so convoluted. Just to make one simple and obviou… Continue reading I find the e-mail (as method of message exchange) convoluted and easy to break [closed]
I have just moved to a new place and the router is controlled by the managing company, what can I do to improve my security and my anonymity under this constraint?
Continue reading Securing home network when not controlling the router