23 July 2022

cheat sheet

XSS Prevention Cheat Sheet Cross-Site Scripting -Extended XSS Prevention Cheat Sheet
17 min read

XSS Prevention Cheat Sheet Cross-Site Scripting -Extended

RiSec.n0tst3 6 July 2022
What is XSS? Cross-Site Scripting in short XSS refers to the penetration of website security. A simple XSS vulnerability can act as a sitewide logger. To be honest, it does more damage to the user browsing the site than the web server itself. So yes, it is quite dangerous. Some people may confuse XSS with CSS, which is a very different thing. Cascading Style Sheets or CSS is used in the design functionality of a webpage. Simple JavaScript like this can cause a massive hole in security as an...
Continue Reading
Cheat Sheet for Analyzing Malicious Software BannerStart
3 min read

Cheat Sheet for Analyzing Malicious Software

RiSec.n0tst3 13 November 2020
This cheat sheet presents tips for analyzing and reverse-engineering malware. It outlines the steps for performing behavioral and code-level analysis of malicious software. Overview of the Malware Analysis Process Use automated analysis sandbox tools for an initial assessment of the suspicious file. Set up a controlled, isolated laboratory in which to examine the malware specimen. Examine static properties and meta-data of the specimen for triage and early theories. Perform behavioural analysis to examine the specimen’s interactions with its environment. Perform static code analysis to further understand the specimen’s inner-workings. Perform dynamic code analysis...
Continue Reading

You may have missed

OctoBot WebInterface – Remote Code Execution (RCE) – 0.4.3 Vulnerability
5 min read

OctoBot WebInterface – Remote Code Execution (RCE) – 0.4.3

21 July 2022
Dangerous ‘Lightning Framework’ Linux malware installs rootkits, backdoors Dangerous ‘Lightning Framework’ Linux malware installs rootkits, backdoors
3 min read

Dangerous ‘Lightning Framework’ Linux malware installs rootkits, backdoors

21 July 2022
Atlassian Patches critical Confluence hardcoded credentials flaw Atlassian
3 min read

Atlassian Patches critical Confluence hardcoded credentials flaw

21 July 2022
Microsoft Teams outage also affected Microsoft 365 services Microsoft
2 min read

Microsoft Teams outage also affected Microsoft 365 services

21 July 2022
en English
af Afrikaanssq Albanianam Amharicar Arabichy Armenianaz Azerbaijanieu Basquebe Belarusianbn Bengalibs Bosnianbg Bulgarianca Catalanceb Cebuanony Chichewazh-CN Chinese (Simplified)zh-TW Chinese (Traditional)co Corsicanhr Croatiancs Czechda Danishnl Dutchen Englisheo Esperantoet Estoniantl Filipinofi Finnishfr Frenchfy Frisiangl Galicianka Georgiande Germanel Greekgu Gujaratiht Haitian Creoleha Hausahaw Hawaiianiw Hebrewhi Hindihmn Hmonghu Hungarianis Icelandicig Igboid Indonesianga Irishit Italianja Japanesejw Javanesekn Kannadakk Kazakhkm Khmerko Koreanku Kurdish (Kurmanji)ky Kyrgyzlo Laola Latinlv Latvianlt Lithuanianlb Luxembourgishmk Macedonianmg Malagasyms Malayml Malayalammt Maltesemi Maorimr Marathimn Mongolianmy Myanmar (Burmese)ne Nepalino Norwegianps Pashtofa Persianpl Polishpt Portuguesepa Punjabiro Romanianru Russiansm Samoangd Scottish Gaelicsr Serbianst Sesothosn Shonasd Sindhisi Sinhalask Slovaksl Slovenianso Somalies Spanishsu Sudanesesw Swahilisv Swedishtg Tajikta Tamilte Teluguth Thaitr Turkishuk Ukrainianur Urduuz Uzbekvi Vietnamesecy Welshxh Xhosayi Yiddishyo Yorubazu Zulu