pentestercrab | Dark Hacker News

user:	pentestercrab
created:	August 11, 2015
karma:	2.2k

1.	When Dawkins met Claude – Could this AI be conscious?(unherd.com) 64 points by pentestercrab 17 days ago \| 434 comments
2.	Ruby Array Pack Bleed(nastystereo.com) 62 points by pentestercrab 131 days ago \| 1 comment
3.	Ruby Array Pack Bleed – Impacts Ruby 1.6.7 to 4.0.0(nastystereo.com) 9 points by pentestercrab 139 days ago \| 0 comments
4.	Inline Style Exfiltration: leaking data with chained CSS conditionals(portswigger.net) 1 points by pentestercrab 264 days ago \| 0 comments
5.	Marshal madness: A brief history of Ruby deserialization exploits(blog.trailofbits.com) 25 points by pentestercrab 271 days ago \| 4 comments
6.	Breaking the Sorting Barrier for Directed Single-Source Shortest Paths(arxiv.org) 99 points by pentestercrab 282 days ago \| 3 comments
7.	New Method to Leverage Unsafe Reflection and Deserialisation to RCE on Rails(elttam.com) 1 points by pentestercrab 1 year ago \| 0 comments
8.	Escaping Ruby's Gem:SafeMarshal Sandbox(nastystereo.com) 2 points by pentestercrab 1 year ago \| 1 comment
9.	Escaping Ruby's Gem:SafeMarshal Sandbox(nastystereo.com) 3 points by pentestercrab 1 year ago \| 0 comments
10.	RubyGem's Gem:SafeMarshal buffer overrun with length larger than fit into a byte(github.com) 1 points by pentestercrab 1 year ago \| 0 comments
11.	CORS Vulnerabilities in Go: Vulnerable Patterns and Lessons(pentesterlab.com) 1 points by pentestercrab 1 year ago \| 0 comments
12.	Shiny Vulnerabilities in R's Most Popular Web Framework(nastystereo.com) 1 points by pentestercrab 1 year ago \| 0 comments
13.	PentesterLab: Web Hacking and Security Code Review 600 exercises and 700 videos(pentesterlab.com) 1 points by pentestercrab 1 year ago \| 0 comments
14.	Cross-Site Post Requests Without a Content-Type Header – CSRF Attack(nastystereo.com) 2 points by pentestercrab 1 year ago \| 0 comments
15.	Execute commands by sending JSON? Ruby deserialization vulnerabilities(github.blog) 2 points by pentestercrab 1 year ago \| 0 comments
16.	JWT Libraries Block Algorithm Confusion: Key Lessons for Code Review(pentesterlab.com) 3 points by pentestercrab 1 year ago \| 0 comments
17.	Chosen-Prefix Collisions on AES-Like Hashing(eprint.iacr.org) 2 points by pentestercrab 1 year ago \| 0 comments
18.	Ruby 3.4 Universal RCE Deserialization Gadget Chain(nastystereo.com) 2 points by pentestercrab 1 year ago \| 1 comment
19.	Ruby's String Slice is Broken(nastystereo.com) 3 points by pentestercrab 1 year ago \| 2 comments
20.	Evaluate Markdown code blocks within Vim(github.com) 68 points by pentestercrab 1 year ago \| 18 comments
21.	SQL Injection Polyglot Payloads(nastystereo.com) 1 points by pentestercrab 1 year ago \| 0 comments
22.	Insecurity Through Censorship: Vulnerabilities Caused by the Great Firewall(assetnote.io) 2 points by pentestercrab 1 year ago \| 1 comment
23.	Insecurity Through Censorship: Vulnerabilities Caused by the Great Firewall(assetnote.io) 4 points by pentestercrab 1 year ago \| 0 comments