21.11.2020 - link drop
- r2c blog — Exploiting dynamic rendering engines to take control of web apps
- GitHub - returntocorp/semgrep: Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
- PayloadsAllTheThings/Server Side Request Forgery at master · swisskyrepo/PayloadsAllTheThings · GitHub
- Why everyone is stupid except me
- Kubernetes Executor should block
CAP_NET_RAW
capability by default; allow configuration (#26833) · Issues · GitLab.org / gitlab-runner · GitLab - SAD DNS Explained