DEV Community

Graham Zemel
Graham Zemel

Posted on • Originally published at Medium on

1

TGA Weekly Newsletter [11/16/22]

Hey! Welcome to The Gray Area’s newsletter for 11/16/22, with the top posts of the week!


Photo by Tianyi Ma on Unsplash

Top Articles:

This past week (11/9/22 → 11/16/22), we saw a ton of super popular articles as new writers started contributing more and more. Plus, some great posts on OWASP level vulnerabilities:

P1 Bounties: Cross-Site Scripting (XSS) Tips and Tricks

Which Security Hill Will You Die On?

Creating Undetectable Reverse Shells for Windows 10

Niche Articles:

A couple of more specific articles:

C0lddbox : Walkthrough 📝

10 Minute Bug Bounties: OSINT With Google Dorking, Censys, and Shodan

If you find these posts worth your time, feel free to give a few claps to show you liked the content, support the writer, and help out the publication.

Neat thing O’ the week:

Mastodon’s users are vulnerable to password-stealing attacks!

In light of Elon Musk now essentially ruling Twitter — having swept the board away and purchasing the company himself (a $44 billion purchase at that) — a large amount of users have been migrating to Mastodon. Mastodon is a similar platform to Twitter, and it provides the same kind of social media type feel.

It’s also open source which is great, especially when you find out that there’s an exploit in the code. Using Google Chrome’s autofill feature, it was possible to spoof a clicked toolbar element and post HTML, which is a big no-no for websites with any kind of authentication.

Check out The Gray Area’s Twitter here to get post updates as they come in, or subscribe to get them immediately delivered to your inbox!


Photo by Souvik Banerjee on Unsplash

That’s all for this newsletter. Thanks for reading, and we’ll see you next week!


AWS Security LIVE!

Tune in for AWS Security LIVE!

Join AWS Security LIVE! for expert insights and actionable tips to protect your organization and keep security teams prepared.

Learn More

Top comments (0)

Billboard image

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Learn more

👋 Kindness is contagious

Explore a sea of insights with this enlightening post, highly esteemed within the nurturing DEV Community. Coders of all stripes are invited to participate and contribute to our shared knowledge.

Expressing gratitude with a simple "thank you" can make a big impact. Leave your thanks in the comments!

On DEV, exchanging ideas smooths our way and strengthens our community bonds. Found this useful? A quick note of thanks to the author can mean a lot.

Okay