๐Ÿฆž๐ŸŒฏ Lobster Roll

Thread

A Magical Web Screenshot Project (github.com)
L 4 pts 1 comments by cak Dec 18, 2018 securityweb thread
Crystal Ball is a library that takes an array or file of URLs and returns a report with screenshots (using Puppeteer), application headers and src/href references.

Stories related to "A Magical Web Screenshot Project" across the full archive.

A Magical Web Screenshot Project (github.com)
L 4 pts 1 comments by cak Dec 18, 2018 securityweb Web DevelopmentSecurity / Privacy thread
Crystal Ball is a library that takes an array or file of URLs and returns a report with screenshots (using Puppeteer), application headers and src/href references.
New Rule: Every website must disclose their password storage format on the signup page. (gizmodo.com)
L 5 pts 4 comments by crow Aug 13, 2012 privacysecurityweb Web DevelopmentSecurity / Privacy thread
Scared to disclose? It's too weak.
Content hosting for the modern web (googleonlinesecurity.blogspot.com)
L 5 pts 0 comments by jcs Aug 29, 2012 securityweb Web DevelopmentSecurity / Privacy thread
Web Cryptography API (w3.org)
L 9 pts 0 comments by cory Sep 13, 2012 javascriptsecurityweb Web DevelopmentProgramming (General)Security / Privacy thread
Mailvelope - client-side PGP encryption for webmail (mailvelope.com)
L 8 pts 3 comments by jcs Dec 10, 2012 browsersprivacysecurityweb Web DevelopmentSecurity / Privacy thread
Critical crypto bug in OpenSSL opens two-thirds of the Web to eavesdropping (arstechnica.com)
L 1 pts 1 comments by evaipar Apr 8, 2014 securityweb Web DevelopmentSecurity / Privacy thread
Webservers shouldn't have direct access to your private keys. (plus.google.com)
L 1 pts 0 comments by isomer Apr 13, 2014 securityweb Web DevelopmentSecurity / Privacy thread
Best practices in modern web projects - Random notes by Arvid Andersson (blog.arvidandersson.se)
L 1 pts 0 comments by napolux Jun 27, 2014 web Web Development thread
The Ur/Web Manual (enn.github.io)
L 12 pts 0 comments by ika Jul 14, 2014 securityweb Web DevelopmentSecurity / Privacy thread
Ur/Web is a language and framework for building websites using strong types to ensure certain kinds of correctness (like well formed output, no dead links, no xss or sql injection). Here is the Ur/Web manual converted to HTML. This is the main site for the language and compiler: http://www.impred...
Free alternatives to 000webhost (blog.toppagedesign.com)
L 3 pts 0 comments by flyingfisch Aug 29, 2014 securityweb Web DevelopmentSecurity / Privacy thread
New Class of Vulnerability in Perl Web Applications (blog.gerv.net)
L 5 pts 1 comments by jcs Oct 8, 2014 perlsecurityweb Web DevelopmentProgramming (General)Programming Languages / CS TheorySecurity / Privacy thread
Jailed 0.2 now runs untrusted code inside a web-worker inside a sandboxed iframe (github.com)
L 1 pts 0 comments by xpostman Oct 17, 2014 javascriptreleasesecurityweb Web DevelopmentProgramming (General)Security / Privacy thread
phpBB website compromised (phpbb.com)
L 5 pts 0 comments by calvin Dec 17, 2014 securityweb Web DevelopmentSecurity / Privacy thread
Signing in to websites with SSH (vtllf.org)
L 11 pts 0 comments by fcbsd Feb 2, 2015 securityweb Web DevelopmentSecurity / Privacy thread
Critical vulnerabilities in JSON Web Token libraries (timmclean.net)
L 3 pts 0 comments by pushcx May 29, 2015 securityweb Web DevelopmentSecurity / Privacy thread
Big Mess o' Wires ยป Web Site Hacked (bigmessowires.com)
L 4 pts 8 comments by benoliver999 Jul 13, 2015 securityweb Web DevelopmentSecurity / Privacy thread
I am not the owner, but I'm definitely curious as to how the breach may have happened. There's not a huge amount of information but I'm sure people might be able to make suggestions as to how this might have happened.
It's time for the distributed, permanent web (ipfs.io)
L 34 pts 1 comments by kyledrake Sep 9, 2015 distributedsecurityweb Web DevelopmentData / Databases / InfrastructureSecurity / Privacy thread
Cross-Site WebSocket Hijacking (CSWSH) (christian-schneider.net)
L 2 pts 0 comments by brianshaler Oct 13, 2015 securityweb Web DevelopmentSecurity / Privacy thread
The Web Authentication Arms Race โ€“ A Tale of Two Security Experts (blog.slaks.net)
L 5 pts 2 comments by pushcx Oct 14, 2015 securityweb Web DevelopmentSecurity / Privacy thread
Web login using SSH (github.com)
L 20 pts 6 comments by av Nov 19, 2015 securityweb Web DevelopmentSecurity / Privacy thread
Advice on my prototype web template language designed for security? (github.com)
L 2 pts 2 comments by bensummers Dec 6, 2015 asksecurityweb Web DevelopmentSecurity / Privacy thread
I know all the advice on the internets says that you shouldn't develop yet another web templating language, but I haven't found anything that matches my requirements as the author of an (open source) scriptable web app which provides plugins with a web app framework. I have a particular thing abo...
Angler Exploit Kit Continues to Evade Detection: Over 90,000 Websites Compromised (researchcenter.paloaltonetworks.com)
L 1 pts 0 comments by noelle Jan 18, 2016 securityweb Web DevelopmentSecurity / Privacy thread
Let's Encrypt & Nginx: State of the art secure web deployment (letsecure.me)
L 6 pts 1 comments by pyr Mar 15, 2016 securityweb Web DevelopmentData / Databases / InfrastructureSecurity / PrivacyCulture / Philosophy / History / Reading thread
The Basics of Web Application Security (martinfowler.com)
L 6 pts 0 comments by fcbsd Apr 1, 2016 securityweb Web DevelopmentSecurity / Privacy thread
KeyBox: Web-Based SSH Access and Key Management (github.com)
L 5 pts 0 comments by voidzero Apr 10, 2016 linuxsecurityweb Web DevelopmentSystems / Low-Level / OSSecurity / PrivacyProductivity / Career / Business thread
How to set up Free SSL for your Website (jeremymorgan.com)
L 2 pts 0 comments by JeremyMorgan Apr 23, 2016 programmingsecurityweb Web DevelopmentProgramming (General)Security / Privacy thread
How to get truly free SSL for your website with letsencrypt
New debugging method found 23 undetected security flaws in 50 popular Web apps (news.mit.edu)
L 4 pts 0 comments by av Apr 25, 2016 securityweb Web DevelopmentProgramming (General)Security / Privacy thread
How to Install Free SSL for Your Website (dzone.com)
L 4 pts 1 comments by JeremyMorgan May 6, 2016 securityweb Web DevelopmentSecurity / Privacy thread
CertBot: Automatically enable HTTPS on your website with Let's Encrypt certs (certbot.eff.org)
L 3 pts 0 comments by av May 16, 2016 securityweb Web DevelopmentSecurity / Privacy thread
Its written using Python - [Github](https://github.com/certbot/certbot)
JWT Inspector - Chrome extension to inspect and debug JSON Web Tokens (jwtinspector.io)
L 11 pts 0 comments by rdegges Jun 10, 2016 browsersdebuggingprogrammingsecurityweb Web DevelopmentProgramming (General)Security / Privacy thread