url – Page 16 – WindowsTechs.com

What’s the security risk of using a protocol-relative URL in a CSS stylesheet?

Posted on September 10, 2019 by Benoit Esnard

I used SonarQube to perform a static code analysis of my project and it detected a security vulnerability in one of my CSS files:

For security reasons, protocol-relative URLs should not be used.

Noncompliant Code Exa… Continue reading What’s the security risk of using a protocol-relative URL in a CSS stylesheet?→

Hacker101 Spoilter #2 EASY Micro-CMS v1

Posted on September 9, 2019 by ruevaughn

I am just getting into CTF and Hacking in general. I am very confused as to why this worked when I added an apostrophe to the end it reveals the flag. I have Burp Community Edition suite going and I have HTTP live headers.

I am just not … Continue reading Hacker101 Spoilter #2 EASY Micro-CMS v1→

What is this URL that loads each time Google Chrome spawns?

Posted on September 3, 2019 by user3290171

What does this URL do that opens each time Google Chrome loads?

http://redirector.gvt1.com/edgedl/chromewebstore/L2Nocm9tZV9leHRlbnNpb24vYmxvYnMvOWVmQUFXS041NV9ZVXlJVWwxbGc5TUM4dw/7519.422.0.3_pkedcjkdefgpdelpbcmbmeomcjbeemfm.crx

Yo… Continue reading What is this URL that loads each time Google Chrome spawns?→

Is exposing enumerated id’s a bad idea if precautions are taken?

Posted on September 2, 2019 by Jacob

So say I have a website that has the URL website.com/student/{studentId}/courses for retrieving all the courses a student is enrolled in. And the studentId is an auto-incrementing value in the Student table I have in my datab… Continue reading Is exposing enumerated id’s a bad idea if precautions are taken?→

Exposing a version number through the assets urls

Posted on August 30, 2019 by zerkms

I just received a blackbox pentesting report where the security company recommended to hide the version number from the page (be it returned to the user as a text or used as a cache-buster in the css/js/img urls, like /path/t… Continue reading Exposing a version number through the assets urls→

Can phishing site URL shorten into numbers?

Posted on August 27, 2019 by Hyeon-JoonSeo

A suspected hacker was trying to get the user to input those numbers (2412958) in their address book. And user knows that the numbers are weird.

Can URLs be shortened in texts like that?

Continue reading Can phishing site URL shorten into numbers?→

Is someone impersonating w3schools website? [on hold]

Posted on August 26, 2019 by aMJay

As you do I’ve been recently googling some basic javascript command to read more on its use (typed js on drag event in google), and the first result was popular website w3schools.com.

However before I visited the website i … Continue reading Is someone impersonating w3schools website? [on hold]→

Url Storage, History & Personal Data

Posted on August 16, 2019 by Ryan Stone

Just Curious to Know,
Where my information is being stored and how long its kept for
I’m running the latest version of windows 10,
my main Browser being firefox developer edition 68.

I clear my history regularly, as it clo… Continue reading Url Storage, History & Personal Data→

A New Way To Remote Terminal

Posted on August 10, 2019 by Bryan Cockfield

Thanks to the wonders of the internet, collaborating with others across great distances has become pretty simple. It’s easy now to share computer desktops over a network connection, and even take control of another person’s computer if the need arises. But these graphical tools are often overkill, especially if all …read more

Continue reading A New Way To Remote Terminal→

Viewing URLs on Mobile Devices

Posted on August 8, 2019 by Mike Shelton

What are you doing to help your users view URLs in emails on mobile devices? Our training program is helping people to understand how to view URLs before clicking the actual link. On mobile devices this is difficult and every… Continue reading Viewing URLs on Mobile Devices→