Naughty Castro classic Hot Cookie to open shop at Pier 39

The move comes as Pier 39 works to attract more locals and domestic visitors. Famed banh mi shop expands to Fisherman's Wharf ...
LinkedIn

I don't want your cookies

As anyone who has ever worked with me can tell you, I love Cross-Site Scripting. I spend a lot of my time learning new and wonderful ways to pop that sweet alert box, most of which is spent on Paul ...
LinkedIn

Stored XSS Exploit through CSV File Upload Feature

I recently identified and reported a Stored Cross-Site Scripting (XSS) vulnerability in a SaaS based file storage and sharing service through the Open Bug Bounty program. In this post, I’ll walk you ...
GitHub

Dumps web page outputs including JavaScript generated contents.

Visit here. If the server is sleeping, it takes several seconds to wake up. json (default) - outputs the site source code, the HTTP header, the HTTP status code, and content type as JSON with the ...
GitHub

Talisman: HTTP security headers for Flask

Talisman is a small Flask extension that handles setting HTTP headers that can help protect against a few common web application security issues. In addition to Talisman, you should always use a cross ...