What happened, and an investigation of the malware| mh4ckt3mh4ckt1c4s' blog
BlockBlock offers a chat application where the database is built on the blockchain using smart contracts. I’ll abuse a cross-site scripting vulnerability along with an api endpoint that reflects the user’s authentication cookie to get access to the admin’s account. From there, I’ll figure out how to make JSON RPC calls against the local Etherium instance, and read the raw blocks of the blockchain to find a password that provides SSH access. The user can run forge as another user, whic...| 0xdf hacks stuff
thoughts, talks, docs and unpopular opinions| www.dgt.is
This blog talks about how we protect our workloads against supply chain attacks, specifically by achieving bit-by-bit reproducible builds, and how we have adopted Nix an alternative to Docker for build environments.| Monzo
Related articles| wiki.archlinux.org
Related articles| wiki.archlinux.org
Related articles| wiki.archlinux.org
Related articles| wiki.archlinux.org
Related articles| wiki.archlinux.org
Related articles| wiki.archlinux.org