artis3n profile

Derbycon 9: Bank of America CTF

Ari Kalfus・

#pentest #security #ctf #hacking
Reactions
34 min read

Recent Comments

re: I made DEV.to widget for websites/blogs
This is great. Nit: Promote healthy web practices and add s...
re: How to build a documentation culture
The Write the Docs URL is mangled - htts//writethedocs.org ...
re: 3 Amazing ways to generate random numbers without Math.random()
I don't want to toot my own horn, but I did write an articl...
re: Sodium-Plus: A Positive Cryptography Experience for JavaScript Developers
This is awesome!
re: Simple Intro to JWT Basics
Okta has a nice article from a few years ago about using JW...
re: JSON Web Tokens (JWT) vs. SessionID 🔐 ? explained in 2 mins
Don't use JWTs, sessions are your friend. cryto.net/~joepi...
re: If you were tasked to conduct a security audit on a server/database-backed web app, where would you start?
Also, business logic inconsistencies and access control mis...
re: If you were tasked to conduct a security audit on a server/database-backed web app, where would you start?
OWASP has a great web app testing methodology guide to walk...
View All 25 Comments
artis3n profile

#discussWho's Using Isolates? (Cloudflare article)

Ari Kalfus・

#webdev #discuss #cloud #container
Reactions
chat
1 min read
artis3n profile

Demystifying SOP and CSP, featuring CORS

Ari Kalfus・

#security #appsec #webdev
Reactions
10 min read
artis3n profile

#discussHow do you authenticate your users?

Ari Kalfus・

#security #discuss #webdev
Reactions
chat
1 min read
artis3n profile

Encrypting Files in a Post-PGP Age

Ari Kalfus・

#crypto #security #encryption
Reactions
chat
5 min read
loading...