-
It's impossible to find a user whose user handle has an IDN as the domain part. Below is an example and a log excerpt:
```
vernissage-api | [ INFO ] GET /api/v1/search [request-id: B056B3FE-F…
-
Non-ASCII domain names are, on a technical level, vulnerable to homograph attacks that enable impersonation. In the DNS world, this risk is mitigated by DNS registry policies that disallow registerin…
-
## Expected Behavior
The app version 3.7 for Android introduced a security warning to prevent IDN homograph attacks for suspicious links. The warning should be shown on all Threema platforms (so, als…
-
When a source sends a URL that accompanies a submission, journalists may want to visit it securely.
Right now, URLs are rendered as plain-text, and the journalist has to manually copy and paste th…
-
# Problem
Our chat is vulnerable to an IDN homograph attack as described in [this](https://wildfire.blazeinfosec.com/security-advisory-signal-idn-homograph-attack-2/) article.
It appears as though …
-
[asciicheck](https://github.com/tdakkota/asciicheck) is a linter that forbids the use of non-ASCII characters in identifiers, to prevent homograph attacks. While there is some merit to such a check, I…
-
Goal: Mitigate certain forms of account impersonation that rely on [homographs](https://en.wikipedia.org/wiki/IDN_homograph_attack).
Feature: Display a small dot, frame, or other colored identifier…
-
This bug is twofold. Both aspects of it originate from [rfc8616](https://tools.ietf.org/html/rfc8616#section-5), which allows d=, i=, and s= tags of a DKIM-Signature header field to be utf-8.
On t…
-
Is it possible to set risk for DWORD and hex formatted url in http dissector similar to NDPI_HTTP_NUMERIC_IP_HOST?
-
* https://en.wikipedia.org/wiki/IDN_homograph_attack#Defending_against_the_attack
* https://en.wikipedia.org/wiki/Mathematical_Alphanumeric_Symbols#Latin_letters
* https://en.wikipedia.org/wiki/Lett…
bkil updated
3 months ago