Collaborate Disseminate
For my web app, I hardcode a reverse DNS detection for common web crawlers. And for detecting them I use their Reverse DNS, which I always check whether it includes i.e. google.com. My questions would be:
Can this be a possible security f… Continue reading Can this logic with regard to checking Reverse DNS records be flawed?
What would happen if I ARP spoofed my router, with that I mean that I make all devices on the network believe that I am the router. As there would be a MAC address conflict would that result in a DOS for all devices on the WiFi?
Continue reading What would happen if I ARP spoofed my router
Lets say we have this SPF record
v=spf1 include:spf.protection.outlook.com include:spf.onprem.com -all`
And this record
v=spf1 include:spf.protection.outlook.com include:spf.onprem.com ?all
What would be the difference ?
Would record1 ac… Continue reading SPF records and spoofing
My research:
I found this security stackexchange post but it didn’t answer my question.
I know that you can do similar things using astresik with voip provider.
I came up on o blog that explain that sim card is computer ect.. link
But can … Continue reading How can you spoof you caller id but not using a voip (your carrier instead)?
When GPS is spoofed in a smartphone, does this affect whatever is being monitored? Suppose I spoof the GPS on my smartphone, such as lazy Pokemon GO players do to play from their couch. Will this spoof be transmitted to a surveillance agen… Continue reading When GPS is spoofed in a smartphone, does this affect whatever is being monitored?
Goal
Authenticate the Client via HTTP Request.
Authenticate the Client’s WebSocket connection.
Prevent exploitation of WebSocket connection(when a XSS Vulnerability is present on website).
How I’m doing this
Step 1 Client visits the webs… Continue reading Securing a Websocket Connection in case of XSS Vulnerability
Assume I ask someone to create a filter in their Gmail account that automatically forwards certain emails to my inbox. If the original email was protected with DMARC, would the forwarded email also be protected? Or does it lose the protect… Continue reading Do fowarded emails retain DMARC protection?
I have a service that runs as Windows Service on a device and developed using C#, and uses the gRPC protocol for communication as shown in the below diagram.
The service is running on port 5000 as http://localhost:5000
I am doing a cybers… Continue reading What are possible spoofing attacks on internal services in devices?
We are working on an activity to train staff about security. Is there any way to spoof the company’s guest router and ask staff to provide login credentials (as public wifi does) and when they do that, we will have a list of their password… Continue reading Fake AP for Staff Security Awareness
I’m looking for real-world case studies or papers from people who have been part of a large-scale corporate brand change, from an Information Security perspective: that is, aside from the obvious (increase in phishing, spoofing, etc), what… Continue reading What are the security risks of a corporate rebrand? [closed]