Wrote about a funny little vulnerability in goreportcard I encountered just before publishing oauth-labs.
Give it a read if you have some time to kill :)
| :twitter: | https://twitter.com/_cydave |
| :github: | https://github.com/cydave |
| ✍️ | https://0dave.ch/ |
Dave
@cydave@infosec.exchange
- 101 Followers
- 110 Following
- 116 Posts
Security Engineer | Clicker of Links | Pusher of Buttons | Cat Dad
Quick http://ghmlwr.0dave.ch/ update:
I've included raw JSON data and an RSS feed (atom), check it out :)
(let me know if either of these two files are borked).
It's sunday. You are very bored, you want to make the world a better place and report malicious repositories on GitHub.
You can: https://ghmlwr.0dave.ch/
So I've implemented the status check for the repositories (online vs. offline) over at https://ghmlwr.0dave.ch/. Any other ideas? :)
Quick update to ghmlwr.0dave.ch, you can now see their online status!
Wrote a short post on how ghmlwr.0dave.ch works. Nothing too crazy, but if you're interested, read on:
@zate so I guess there are no updates regarding the vulns we handed over to your team? 
New day, new malware on GitHub :(
Looks like the stargazers have increased as well this fine monday. Curious!
Malware on GitHub?!
If only there were bored people on the internet who would report those repositories. Wouldn't that be great.
Malware on GitHub?!
(yes, there's been malware on GitHub for quite some time now)
