· software
Session-Based Authentication VS Token-Based Authentication
!Cover image for Session-Based Authentication VS Token-Based Authenticationhttps://media2.dev.to/dynamic/image/width=1000,height=420,fit=cover,gravity=auto,form...
-
- · it
LWN is currently under the heaviest scraper attack seen yet
Article URL: https://social.kernel.org/notice/B2JlhcxNTfI8oDVoyO Comments URL: https://news.ycombinator.com/item?id=46651887 Points: 57 Comments: 9...
- · software
How I built a Zero-Knowledge Secret Sharer using Next.js and the Web Crypto API
!Cover image for How I built a Zero-Knowledge Secret Sharer using Next.js and the Web Crypto APIhttps://media2.dev.to/dynamic/image/width=1000,height=420,fit=co...
- · software
Understanding SSL/TLS Certificates
The Name Game: SSL vs TLS SSL Secure Sockets Layer and TLS Transport Layer Security are often used interchangeably, but SSL is effectively dead. It hasn’t been...
- · software
How to use JWT for authentication on Node.js
!Cover image for How to use JWT for authentication on Node.jshttps://media2.dev.to/dynamic/image/width=1000,height=420,fit=cover,gravity=auto,format=auto/https%...
- · it
Lab: Finding a hidden GraphQL endpoint
Mô tả The user management functions for this lab are powered by a hidden GraphQL endpoint. You won't be able to find this endpoint by simply clicking pages in...
- · software
Observing Behavioral Anomalies in Web Applications Beyond Signature Scanners
Overview Most web scanners rely on payload signatures and response matching. In practice, servers often exhibit anomalous behavior without returning explicit e...
- · software
Exploring Runtime Request Inspection in Laravel (Guards, Contexts, and Tradeoffs)
Introduction I’ve been experimenting with a Laravel package that inspects requests during runtime, after the request has entered the framework rather than only...
- · it
I Reviewed 120 Websites: These Security Mistakes Kept Showing Up
Overview I researched how small businesses and early‑stage startups handle basic web security by examining 120 different websites with explicit consent from th...
- · it
Simple Blind SQL Injection
!Cover image for Simple Blind SQL Injectionhttps://media2.dev.to/dynamic/image/width=1000,height=420,fit=cover,gravity=auto,format=auto/https%3A%2F%2Fdev-to-upl...
- · software
Unveiling the Threat of Clickjacking in Web Security
What is Clickjacking? In the realm of web security, one of the stealthy threats that often goes unnoticed is clickjacking also known as a UI redress attack. It...
- · software
Academic Suite Authentication & Authorization
3.1 Authentication Approach in Academic Suite Academic Suite uses a stateless authentication approach with JSON Web Token JWT. Unlike session‑based authenticat...