0x03 Send the request with PoC, when users login again, there is Remote Code Execution.
0x04 start Tomcat Server, when users login the website, their login sessions will be stored in MongoDB Server, as you know, there are so many unauthorized MongoDB Servers on the Internet, just search them by Shodan :)
geolog
IP geolocation for SSH brute force attacks.
features
continuous ssh auth log parsing for failed login attempts
notify successful attempts via email as potetial breaches
basic charts with the origin count
Conscrypt - A Java Security Provider
Conscrypt is a Java Security Provider (JSP) that implements parts of the Java Cryptography Extension (JCE) and Java Secure Socket Extension (JSSE). It uses BoringSSL to provide cryptograhpic p
Project Wycheproof
https://github.com/google/wycheproof
Project Wycheproof is named after Mount Wycheproof, the smallest mountain in the world. The main motivation for the project is to have a goal that is achievable. The smalle
seawaf-agent
An open source web application firewall component
why
Applications should not be delegating most of their runtime protection to the external devices. Applica-tions should be capable of self- protection
Tink
A multi-language, cross-platform library that provides cryptographic APIs that are secure, easy to use correctly, and hard(er) to misuse.
Ubuntu
macOS
Index
In
Bisq
What is Bisq?
Bisq is a safe, private and decentralized way to exchange bitcoin for national currencies and other digital assets. Bisq uses peer-to-peer networking and multi-signature escrow to facilitate tradin
OpenRASP
Introduction
Unlike perimeter control solutions like WAF, OpenRASP directly integrates its protection engine into the application server by instrumentation. It can monitor various events including database
jCasbin
News: still worry about how to write the correct jCasbin policy? Casbin online editor is coming to help! Try it at: http://casbin.org/editor/
jCasbin is a powerful and efficient open-source access control librar