c0nradsc0rner.wordpress.com
c0nradsc0rner – Mostly security and programming tutorialsSecurity and programming tutorials
http://c0nradsc0rner.wordpress.com/
Security and programming tutorials
http://c0nradsc0rner.wordpress.com/
TODAY'S RATING
>1,000,000
Date Range
HIGHEST TRAFFIC ON
Saturday
LOAD TIME
0.4 seconds
16x16
32x32
PAGES IN
THIS WEBSITE
9
SSL
EXTERNAL LINKS
2
SITE IP
192.0.78.12
LOAD TIME
0.437 sec
SCORE
6.2
c0nradsc0rner – Mostly security and programming tutorials | c0nradsc0rner.wordpress.com Reviews
https://c0nradsc0rner.wordpress.com
Security and programming tutorials
Playing With Ethereum – c0nradsc0rner
https://c0nradsc0rner.wordpress.com/2016/06/22/playing-with-ethereum
Mostly security and programming tutorials. I’ve been skirting around Ethereum for awhile. Now and then I see a post about it in hacker news, or people circle jerking over the DAO. But it is pretty confusing. I decided to dive in yesterday and see what you can do with Ethereum. Smart contracts are only starting to make sense now that I’ve been playing with them. This was my favorite intro article:. This is the online IDE I used:. And I used the Wallet from the main website:. To perform any actions, you ne...
c0nradsc0rner – Page 2 – Mostly security and programming tutorials
https://c0nradsc0rner.wordpress.com/page/2
Mostly security and programming tutorials. XSS persistence using JSONP and serviceWorkers. One of my favorite exploits in the world is this web attack that allows you to maintain access to a website within a users browser indefinitely. Even if they close the browser and come back without a session you’ll still be hooked. It works by combining an unfiltered JSONP route, serviceWorkers, and an XSS to create a persistent backdoor on a website. A great introduction to serviceWorkers can be found here. Html b...
BSON and Golang Interfaces – c0nradsc0rner
https://c0nradsc0rner.wordpress.com/2016/06/19/bson-and-golang-interfaces
Mostly security and programming tutorials. BSON and Golang Interfaces. This weekend I decided to implement BSON. BSON is just a binary representation of JSON with some extra types and traversal speed improvements. Traversal speed is important for rapidly scanning a group of BSON objects (called Documents) for specific pieces of information. Lets imagine you had a list of JSON like the following, and you were searching for the information under the key value “secret”. The Type Identifier (byte). Normally ...
Intro to SameSite Cookies (CSRF Protection) – c0nradsc0rner
https://c0nradsc0rner.wordpress.com/2016/06/17/intro-to-samesite-cookies-csrf-protection
Mostly security and programming tutorials. Intro to SameSite Cookies (CSRF Protection). A pretty common web attack involves hijacking a user’s session to get them to perform actions on your behalf. Lets say Bob signs into his bank account at bank.com. From now on, whenever Bob interacts with bank.com the browser will send his cookies so that bank.com knows that the request was made by Bob. Lets say Eve knows that he is logged into bank.com and sends him a message like:. Check out this sweet cat picture:.
ECB Byte at a Time – c0nradsc0rner
https://c0nradsc0rner.wordpress.com/2016/07/03/ecb-byte-at-a-time
Mostly security and programming tutorials. ECB Byte at a Time. ECB Byte at a Time is a fun crypto attack that doesn’t require any math knowledge. Just an understanding of the systems work and how they interact. Lets imagine you had some session cookie or token that was constructed like:. AES ECB(INPUT SECRET, KEY). It’s possible to determine SECRET with only control of INPUT! The actual encryption algorithm doesn’t matter either (in this case AES), as long it’s block based and uses ECB. So how can we use...
TOTAL PAGES IN THIS WEBSITE
9
c0nr4d | DeviantArt
Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')". Biggest Official StreetArt Group. Deviant for 11 Years. Biggest Official StreetArt Group. Deviant.Art.Graffiti.Revolution. The Street Art Group. This deviant's activity is hidden. Deviant since Jan 25, 2007. This is the place where you can personalize your profile! By moving, adding and personalizing widgets. You can drag and drop to rearrange. Window.L...
C0NR4T (conrat) - DeviantArt
Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')" class="mi". Window.devicePixelRatio*screen.width 'x' window.devicePixelRatio*screen.height) :(screen.width 'x' screen.height) ; this.removeAttribute('onclick')". Join DeviantArt for FREE. Forgot Password or Username? Deviant for 5 Years. This deviant's full pageview. Last Visit: 78 weeks ago. This is the place where you can personalize your profile! Bajo un ...
Blog de c0nrad-web - Blog de c0nrad-web - Skyrock.com
Mot de passe :. J'ai oublié mon mot de passe. Bienvenue dans une nouvelle source , sur notre star de télé-réalité préférée Lauren Conrad ♪. 8594;Photos , Vidéos. 8226;Version 1.0. 8226;Logiciel : Photofiltre / Unfreez. 8226;Création : 10.08.2010. 8226;Avatar : LesFreresScott-Online. 8226;Amis : Acceptés ( minimum 2 com's). 8226;Favoris : Je choisis. 8226;Pub: Acceptées , Lu , peut etre Visité. 8226;Offres: Si vous ne précisez pas laquelle je ne rends rien. 8226;Commentaires : rendus sauf blog perso.
c0nrad.io
C0nrad.io Stuart Larsen. Stuart Larsen is currently a security engineer at MongoDB. He's been programming for about 12 years on things from quantum emulators, to cat fact spamming websites, to open source security tools. Previously he worked at Yahoo! Slides: https:/ pacsec.jp/psj15/PSJ2015 Stuart Attacking-HTTP2-Implementations en.pdf. Security Basics: Lessons From a Paranoid. NYC /w Meetup, 2015. Slides: http:/ c0nrad.io/paranoids/slides.pdf. Spearing Superfish with HPKP. Apache Traffic Server - HTTP2 ...
c0nrad66's blog - * La petite vie de ¢Θnrad. CΘnrad la vache . * - Skyrock.com
La petite vie de Θnrad. CΘnrad la vache . *. 11/03/2007 at 9:34 AM. 24/03/2008 at 5:01 AM. Un peu de pub. Subscribe to my blog! Don't forget that insults, racism, etc. are forbidden by Skyrock's 'General Terms of Use' and that you can be identified by your IP address (66.160.134.4) if someone makes a complaint. Please enter the sequence of characters in the field below. Posted on Thursday, 24 May 2007 at 5:58 AM. Edited on Saturday, 21 July 2007 at 7:24 AM. Add this video to my blog. 15 ans cte vieille.
c0nradsc0rner – Mostly security and programming tutorials
Mostly security and programming tutorials. This is really just a security misconfiguration. But if you’re using CSP (Content-Security-Policy), it’s something to keep in mind. The tl;dr is make sure. If you’re not using it. Using this “attack” you can reflect SVGs to get execution even in a CSP controlled environment. This is just another recipe to add to your books for bypassing CSP (insecure directives, JSONP, base offset, encoding). Website with File/Image Upload (accepting SVG). An XSS injection,.
c0nri-uni-verselle.skyrock.com
Blog de c0nri-uni-verselle - Tous se partage,même sa ;-) - Skyrock.com
Mot de passe :. J'ai oublié mon mot de passe. Tous se partage,même sa ;-). Lui,c'est un pompier. L'autre, c'est un ptit ange. Et eux.- -'.CEST DES BOULETS. Et tous ensemble ,c'est dur de géré '. Mise à jour :. Commençons par Dim. voila vous savez. Maud:je lé conu o colege o debut on a u du. Abonne-toi à mon blog! 9792; ∞. 9794; → Garçons. 9792;→ Fille. Ou poster avec :. Retape dans le champ ci-dessous la suite de chiffres et de lettres qui apparaissent dans le cadre ci-contre. Ou poster avec :. Maintenan...
c0ns--t4nc3's blog - Constaance.(Ll) - Skyrock.com
Design by c0ns- t4nc3. 01/03/2008 at 1:56 AM. 13/11/2017 at 2:11 PM. You can not see the blog of c0ns- t4nc3, it is configured so that nobody can see it. Post to my blog. Here you are free.
c0ns-c0ns's blog - (0N$T@N( - Skyrock.com
O0 bOnnE vIsiTe 0o. 29/01/2006 at 11:57 AM. 12/08/2006 at 5:08 AM. Je me suis rendue compte que je n'avait. Genre de musique préféré? Subscribe to my blog! Il faut tjs commencer par ce qu'on a de plus cher au monde. Je ne vais pas faire une longue tirade puisque je peux résumer le tout en un mot. Don't forget that insults, racism, etc. are forbidden by Skyrock's 'General Terms of Use' and that you can be identified by your IP address (66.160.134.62) if someone makes a complaint. UN bout de jB. Don't forg...
Blog de c0ns-cii3n-c3-x - Blog de c0ns-cii3n-c3-x - Skyrock.com
Mot de passe :. J'ai oublié mon mot de passe. Pour elle je donnerais ma vie ; M0n seul c0mbat c'est pour elle . Number one je t'aime tellement . (xՁL`). L'aimer Jusqu'a l'impossible c'est possible. Mise à jour :. Abonne-toi à mon blog! C0ns-cii3n-c3-x Sky.C0m . Je Suiis Ce Genre De Fiille Quii D0nne De L'am0ur Sans Réfléchiir .:. Sii J`ETAiiS UN JUGE ET TOI MON ACCUSES! JE TE CONDAMNERAiiS A M`AiiMER A PERPETUiiTE! J'aimerai retrouver le sourir que j'avais a chaque fois que je te parlais . Retape dans le...
Blog de c0ns-combre - Né de même sAng ... <3 - Skyrock.com
Mot de passe :. J'ai oublié mon mot de passe. Né de même sAng . 3. P t ii t - b r o t h '. G r a n d e - s ii s t '. Mise à jour :. Abonne-toi à mon blog! E Louis . ii. L A 12 piges , &. Iv c'est le 2. 0ubli pAs he ii. L est frAncais . ii. L représente le 69 &. Ez l'0L . Sa pa ss. Ion le f 0o. N vo ila ri. Ou poster avec :. Retape dans le champ ci-dessous la suite de chiffres et de lettres qui apparaissent dans le cadre ci-contre. Posté le mardi 07 août 2007 16:12. Cécile . E ll. E a 16 crO tt. Es =p b on.
SOCIAL ENGAGEMENT