-
**Social Attacks**
A series of actions that could lead to harming our users particularly in our special type of application.
-
### Description
## Forgotten password
This should really just say “Password reset link is sent to the email supplied” regardless the email being found or not
We should show this in any case:
…
-
Arxiv.org. (2019). [online] Available at: https://arxiv.org/pdf/1902.07965.pdf [Accessed 24 Feb. 2019].
-
When a user deletes their account (or renames it and never logs back into crates.io), we are never able to find out about it. We continue to show that github username's avatar, and links to the github…
sgrif updated
2 months ago
-
Replace the current session-based authentication for API endpoints with JWT-based validation.
#### **Details**
1. **JWT Authentication Implementation**
- All API endpoints should validat…
-
- Title
Introduction to Social Engineering
- Brief description about the content to be covered
* What is Social Engineering
* Types of Social Engineering
* Various methods of executio…
-
### Describe the bug
Certain components don't work when unsafe-inline is not defined in the CSP, a security incompatibility that should be resolved so shadcn can also be used by development teams und…
-
- [ ] `kali-database-assessment-trans`
- [ ] `kali-exploitation-tools-tran…
-
During Penetration tests we often need to conduct social engineering attacks on the Mobile phones of user . Social engineering is where any attack in a penetration test begins . This post is about how…
-
The service appears to implicitly trust the user-supplied Host header. If this input is not properly validated, an attacker could inject harmful payloads through the Host header, manipulating server-s…