The Secure Edge: Daily Round-up of Infosec Blogs — Issue #40

HEY HEY HEY! It’s our last newsletter of 2021!!!! Best things I did in this year is by starting this Daily Newsletter. Have A Good Day HACKerss.

THOUGHTS THAT MATTER:

“You can stand tall without standing on someone. You can be a victor without having victims.”

- Harriet Woods

Infosec Punch:

DevOps metrics for kubernetes — Penetration Testing Tools, ML and Linux Tutorialsreconshell.com
Tracking deployment metrics for applications deployed to kubernetes.

Bypassing HttpOnly with phpinfo file | by Aleksi Kistauri | Dec, 2021 | Mediumaleksikistauri.medium.com
Before I start explaining how we are able to bypass the HttpOnly flag, let’s discuss what HttpOnly even is: HttpOnly is an additional flag included in a Set-Cookie HTTP response header. Using the…

Bounty Evaluation GitHub = $15,000 US Dollars | Rate Limit | by Taniya Agarwal | Dec, 2021 | Mediummedium.com
I found the bug on GitHub website where, I bypassed the login authentication. In this walk through I will show it was done. Let’s Understand what rate limit is and how not configuring correctly can…

10 XSS Payloads that May break the System-(2022) — Noobsploitnoobsploit.in
This payloads of xss is both used for angular js and many types of Frameworks,this payload bypass Hard waf like Cloudflare

How having a student mail can help you in Info-sec. | by vishal sharma | Dec, 2021 | Mediumvish-hal.medium.com
Hello Everyone, I’m Vishal & It’s my first ever blog . So if you found any grammatical error or something missing don’t pardon me, Instead hit me with a feedback message on my twitter that will be…

CVE-2021–38314 Leads to Sensitive Information Disclosure | by vFlexo | Dec, 2021 | Mediummedium.com
The scan was finished and I found a subdomain vulnerable to CVE-2021–38314. Lets assume the subdomain was https://sub.redacted.com. Sadly I did not know anything about this vulnerability. Full account takeover vulnerability in Minecraft | by Abdulrahman Makki | عبدالرحمن مكي | Dec, 2021 | Mediumamakki.me
Today, i’m going to share how i found Account takeover vulnerability in Minecraft and reported it to them. If you want to try and find the vulnerability yourself before reading the writeup here is a…

Past Issues:

The Secure Edge: Daily Round-up of Infosec Blogs — Issue #39 | Revuewww.getrevue.co
The Secure Edge: Daily Round-up of Infosec Blogs — Hola!!! Here is your fresh Today’s Newsletter packed with tons of informative things to keep you updated in th

The Secure Edge: Daily Round-up of Infosec Blogs — Issue #38 | Revuewww.getrevue.co
The Secure Edge: Daily Round-up of Infosec Blogs — The Secure Edge is a daily written email/newsletter, which is a curation of the best Cyber Security content of

Twitter Tadka:

--

--

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store