A tale of making internet pollution free

Exploiting Client-Side Prototype Pollution in the wild.

https://blog.s1r1us.ninja/research/PP

@DevMisc
#web #bugbounty #security

31k$ SSRF in Google Cloud Uptime Check

https://nechudav.blogspot.com/2020/11/31k-ssrf-in-google-cloud-monitoring.html

@DevMisc
#security #google #bugbounty

SMTP Injection in GSuite

Sending e-mails as "admin@google.com"

https://www.ehpus.com/post/smtp-injection-in-gsuite

@DevMisc
#security #google #bugbounty

Malware in ua-parser.js

https://github.com/faisalman/ua-parser-js/issues/536

@DevMisc
#web #security #misc

Fake npm Roblox API Package Installs Ransomware and has a Spooky Surprise

https://blog.sonatype.com/fake-npm-roblox-api-package-installs-ransomware-spooky-surprise

@DevMisc
#security #misc

List of languages that compile to JS

https://github.com/jashkenas/coffeenoscript/wiki/list-of-languages-that-compile-to-js

@DevMisc
#javanoscript #dev

Portmaster

Free and open-source network manager.

https://safing.io/portmaster

@DevMisc
#misc #tools

C.R.E.A.M. Finance Implodes In $130 Million Hack

It's the third time that this cryptocurrency loan platform has been hacked this year.

https://www.vice.com/en/article/m7vjjy/cryptocurrency-loan-platform-implodes-in-dollar130-million-hack

@DevMisc
#extra #security

How to get the most value out of your git repository

https://dev.to/marcinwosinek/how-to-get-the-most-value-out-of-your-git-repository-2o85

@DevMisc
#git #misc

Browser-Fingerprinting

Avoiding bot detection: How to scrape the web without getting blocked?

https://github.com/niespodd/browser-fingerprinting

@DevMisc
#extra #dev

Javanoscript Worst Practice

Everyone talks about the “best practices”, however, what about the things we’re doing that they’re not only wrong, but terrible practices?

https://blog.bitsrc.io/javanoscript-worst-practices

@DevMisc
#javanoscript #webdev #codequality

This new Python package builds awesome GUI’s!

On top of this, this package differs from other front-end packages because Dear PyGui uses your GPU for extremely dynamic interfaces!

https://preettheman.medium.com/this-new-python-package-builds-awesome-guis

@DevMisc
#python #ui #design

⚰️ C# in 2022 — Will it die?

C# is a programming language that was released in 2002 and is implemented in different of applications, including web development, desktop applications...

https://dev.to/dotnetsafer/c-in-2022-will-it-die-5501

@DevMisc
#csharp #c #netcore

The worst programming language ever

There's something good you can say about every programming language. But that's no fun.

https://youtu.be/2mnYf7L7Amw [dead link]
https://youtu.be/hCvHTrUh4os

@DevMisc
#bs #overview #misc

Command not found

Install any command on any operating system.

https://command-not-found.com/

@DevMisc
#terminal #tools #misc

Making your own ping

https://fasterthanli.me/series/making-our-own-ping

@DevMisc
#tools #learn #ping

Why solve a problem twice?

Design patterns let you apply existing solutions to your code

https://stackoverflow.blog/patterns

@DevMisc
#design #patterns #learn

Posting (not via internet!) the password to you is secure, as it's illegal to open someone else mail.

https://redd.it/ql1u49

@DevMisc
#meme #security

RCE in a distance learning website

Maybe you should be careful letting users upload .php files...

https://blog.shish.cat/my-first-rce

@DevMisc [#Original ❤️]
#security #bugbounty

The benefits of Iframe-based development

This article shows that Iframes allow single page apps to isolate security, improve performance, and increase developer speed through modular operations.

https://stakedy.com/long/the-hidden-benefits-of-iframe-based-development.html

@DevMisc
#web #dev

Python: Icecream

Never use print() to debug again.

https://github.com/gruns/icecream

@DevMisc
#python #dev