Hanno's blog

Hanno's Blog

Entries tagged as websecurity

Wednesday, October 21. 2020

File Exfiltration via Libreoffice in BigBlueButton and JODConverter

Monday, April 13. 2020

Generating CRIME safe CSRF Tokens

Monday, April 6. 2020

Userdir URLs like https://example.org/~username/ are dangerous

Monday, November 12. 2018

How my personal Bug Bounty Program turned into a Free Security Audit for the Serendipity Blog

Wednesday, April 11. 2018

Introducing Snallygaster - a Tool to Scan for Secrets on Web Servers

Tuesday, September 5. 2017

Abandoned Domain Takeover as a Web Security Risk

Thursday, June 15. 2017

Don't leave Coredumps on Web Servers

Friday, July 15. 2016

Insecure updates in Joomla before 3.6

Tuesday, June 23. 2015

The tricky security issue with FollowSymLinks and Apache

Friday, September 19. 2014

Some experience with Content Security Policy

Sunday, June 15. 2014

Slides from cryptography workshop for web developers

Thursday, September 9. 2010

Test your browser for Clickjacking protection

Tuesday, January 13. 2009

Study research project about session cookies, SSL and session hijacking

Thursday, April 10. 2008

Wordpress mass hacks for pagerank

Thursday, March 27. 2008

Blog-Spam abusing XSS

(Page 1 of 2, totaling 20 entries) » next page

About

This blog is written by Hanno Böck. Unless noted otherwise, its content is licensed as CC0.

You can find my web page with links to my work as a journalist here.

I am also publishing a newsletter about climate change and decarbonization technologies.

The blog uses the free software Serendipity and is hosted at schokokeks.org.

Hanno on Mastodon | Contact / Imprint | Privacy / Datenschutz