Entering in podman containers
Some commands for interacting with the namespaces of Podman containers.
Switching from Docker to Podman
Some notes about using Podman instead of Docker, on Linux. This has been tested on Podman v3.4.7.
Stable diffusion on an AMD Ryzen 5 5600G
Executing the stable diffusion text-to-image model on an AMD Ryzen 5 5600G integrated GPU (iGPU).
Extract the schema from a remote LDAP server
How to extract the schema from a remote LDAP server and use it on a OpenLDAP instance.
Impact of the different Wifi security modes
Comparing the different Wifi/WPA authentication and key distribution methods (PSK, EAP, SEA).
Browser-based attacks on WebDriver implementations
computer security web vulnerability webdriver firefox dns-rebinding csrf
Some context and analysis about attacks on in WebDriver implementations.
Lack of X.509 TLS certificate validation in OWASP ZAP
Lack of X.509 TLS certificate validation in OWASP ZAP (Zed Attack Proxy) could be used for man-in-the-middle attacks.
DNS rebinding on ReadyMedia/minidlna v1.3.0 and below
A DNS rebinding vulnerability I found in ReadyMedia (formerly MiniDLNA) v1.3.0 and below. This is CVE-2022-26505.
Introduction to TLS v1.3
Some notes about how TLS v1.3 works. This is a follow-up of the previous episode about TLS v1.2. As before, the goal is to have a high-level overview about how the protocol works, what is the role of the different messages and be able to understand (and debug) a network traffic dump.
CSRF and DNS-rebinding to RCE in Selenium Server (Grid)
computer security web vulnerability webdriver csrf dns-rebinding advisory
Vulnerabilities in found on the WebDriver endpoints of Selenium Server (Grid).
Page 1 of 8 | Previous page | Next page | JSON Feed | Atom Feed