Collaborate Disseminate
I’m scanning my docker image using Tirvy for vulnerabilities. This is my Dockerfile
FROM python:3.10-slim
ARG PORT=5000
WORKDIR /app
COPY . /app
RUN apt-get update && apt-get upgrade -y
RUN pip3 install -r requirements.txt
If someone can implement the all the functionalities that Authorization server and Ticket Granting Server in one server, why not do it?
Continue reading Why Kerberos protocol defines two servers? [migrated]
Does attacking difficulty of a block cipher depend on it’s block length compared to a substitution cipher?
Continue reading Does attacking difficulty of a block cipher depend on it’s block length?
I am developing a DOS attack recognition module for application layer requests.
The application has a backend consisting several APIs. They all are connected through an API gateway(developed in Node Js). Every request is recorded to a data… Continue reading Application layer DDOS attack detection – enough to analyse only GET/POST requests?
I am developing a DOS attack recognition module for application layer requests.
The application has a backend consisting several APIs. They all are connected through an API gateway(developed in Node Js). Every request is recorded to a data… Continue reading Application layer DDOS attack detection – enough to analyse only GET/POST requests?
I have implemented a backend as a REST API. To maintain the statelessness in REST, I intend to use JWT to verify that that a user has logged in or not.
(A user is logged in if a valid token is present in headers. Not logged in if a token i… Continue reading How to ensure JWT security in authentication?
I have implemented a backend as a REST API. To maintain the statelessness in REST, I intend to use JWT to verify that that a user has logged in or not.
(A user is logged in if a valid token is present in headers. Not logged in if a token i… Continue reading How to ensure JWT security in authentication?
I have come across a CTF challenge that has a part with an SQL injection (MySQL DB). I have completed it, but I do not know why or how the injection works.
The query in the PHP application would probably be like this:
SELECT * FROM users… Continue reading Whats the meaning of ] symbol in a SQL query?
When I scanned a host for open ports I came across the following result:
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
139/tcp filtered netbios-ssn
445/tcp filtered microsoft-ds
3306/tcp open mysql
What does… Continue reading Nmap scan what does STATE=filtered mean? [duplicate]