Collaborate Disseminate
So i am not sure what does this actually do i understand that its a get request but that’s how far my knowledge is
{
"threads":[{"position":24444914,"start":0,"end":25606282,"connection":&q… Continue reading I found this json text in a .srt file for a video [closed]
I re-populate form with JSON data via javascript (all data has the same origin server)
1 Wen the page load, make a request post ajax
2 The response Ajax is a:
Object { primary_ns: {…}, secondary_ns: {…} }
Here is where I do the re-populat… Continue reading Re-populate form with JSON data
We all use text-based fields at one time or another, and being limited to ASCII only can end up being a limitation. That’s what led [Luke Wren] to create asciiwave, …read more Continue reading Turn Timing Diagrams Into ASCII Art, For Friendlier Pasting
I have the following the situation: I have some data structures which look like this:
{
id: int
name: BLOB
password: VARCHAR(80)
…
}
There it is easy to store the encrypted fields in the MySQL database because I could si… Continue reading Storing encrypted data inside a JSON array in MySQL?
I am testing some website for sql injection and found with burp suite that this website is vulnerable.
I have tested sql injection and executed some sql queries successfully within burp suite. Now I want to use sqlmap. Burp suite found a v… Continue reading sqlmap testing JSON data in a cookie [closed]
We recently ran a Veracode SAST scan on our application and discovered that it has a CSRF. However, I wanted to check whether this is really true or it’s just a false positive.
Our application is a pure backend server. Serving JSON APIs t… Continue reading Is a backend API server vulnerable to CSRF?
I am solving a lab related to serialization vulnerabilities. It deals with retrieving files based on the signature. The theory of the lab states as quoted, "Adding ./ will still give you the same file but the application will generate… Continue reading How does "./" affects signature generation for files, in a PHP based web application?
Last year we wrote about [Alex Spataru]’s Serial Studio project, which started life as serial port data visualizer, like a souped-up version of the Arduino serial plotter. [Alex] has been …read more Continue reading Serial Studio One Year On
I published the following diary on isc.sans.edu: “Python Shellcode Injection From JSON Data“: My hunting rules detected a niece piece of Python code. It’s interesting to see how the code is simple, not deeply obfuscated, and with a very low VT score: 2/56!. I see more and more malicious Python code
The post [SANS ISC] Python Shellcode Injection From JSON Data appeared first on /dev/random.
Continue reading [SANS ISC] Python Shellcode Injection From JSON Data
I’m trying to serve someone with a lawsuit for libeling and harassing me on social media, but I’m having difficulty locating and serving them. They made their accounts private after I called the police on them, but I was able to access the… Continue reading What is an Id_str and can I identify and/or locate someone by JSON files of archived Tweets? [closed]