$256 Bounty : XSS via Web Cache Poisoning in Discourse
How Injecting Headers and Poisoning Cache Led to Stored Cross-Site Scripting
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/256-bounty-xss-via-web-cache-poisoning-in-d … ⌘ Read more
The Human Firewall: Why Your Employees Are Both Your Greatest Vulnerability and Asset
In the high-stakes world of cybersecurity, organizations invest millions in sophisticated technologic … ⌘ Read more
DCShadow Attacks: Subverting Active Directory Replication for Stealthy Persistence
Technique that allows adversaries to manipulate directory data by simulating the behavior of a legitimate Doma … ⌘ Read more
Part 1: How to Become a Pentester in 2025: Free & Affordable Online Labs ⌘ Read more
Logic Flaw: Using Invitation Function to Block Other Accounts ⌘ Read more
Bug Chain: pre-auth takeover to permanent access. ⌘ Read more
How I was able to delete a production backend server in my first finding. ⌘ Read more
Business logic: I can order anything from your account without paying for it ⌘ Read more
OSINT Writeups — MIST Cyber Drill 2025 ⌘ Read more
** How Hackers Bypass Login Pages with SQL, Logic Flaws, and Headers **
Welcome to the underworld of cybersecurity! 🌐 In this blog, we dive deep into how hackers bypass login pages — the digital gatekeepers of…
[Continue rea … ⌘ Read more
SameSite? SameMess: How I Bypassed Cookie Protections to Hijack Sessions ️♂️
Hey there!😁
[Continue reading on InfoSec Write-ups »](https://infosecwriteups.com/samesi … ⌘ Read more
I am adopting this kitty, what do i name him? ⌘ Read more
Enterprise-Ready MCP
I’ve seen a lot of complaints about how MCP isn’t ready for the enterprise. ⌘ Read more
Is my cat a meerkat? ⌘ Read more
ALPHA-One Leverages RISC-V StarPro64 for Compact Local LLM Deployment
PINE64 has shared early details of the ALPHA-One, a compact generative AI agent powered by the RISC-V-based StarPro64 SBC. Priced at $329.99, the device is aimed at developers and testers, and comes preloaded with a 7 billion parameter LLM running in a Docker container. The ALPHA-One is built on the StarPro64 SBC, which features the […] ⌘ Read more
End of an era: Tropiculture Australia closes down
One of the Northern Territory’s biggest and most loved commercial nurseries has closed down. ⌘ Read more
Why do Saturation and Luminance go all the way to 240, but Hue goes only to 239? And why 239 anyway?
Comments ⌘ Read more
My 13 year old daughter taught herself last month to crochet ⌘ Read more
This is the most special boy that has ever been and I wanted to share his most special act of love he gives me everyday 😻 ⌘ Read more
Microsoft to Employees: Avoid Romance & Give Your Toddler a Sex Change
Microsoft continues pushing some very woke, very bizarre, very… ⌘ Read more
Linux removes support for the 486, and now I’m curious what that means for Vortex86 processors
I had to dig through our extensive archive – OSNews was founded in 2007, after all – to see if we reported on it at the time, but it turns out we didn’t: in 2006, Intel announced that in 2007, it would cease production of a range of old chips, including the 386 and 486. In Product Change Notification 106013-01, Intel proclaimed these chips dead. … ⌘ Read more
My baby passed this morning ⌘ Read more
How old does my rescue kitten look? ⌘ Read more
IBM DEI Lawsuit Gets Jury Trial Date
There are 3 lawsuits against IBM & Red Hat related to discriminatory hiring & firing by the Big Tech giant. ⌘ Read more
My sweet deaf girl somehow felt me coming when I tried to take her photo… didn’t mean to scare her😭 Sorry, Ori, I love you ❤️ ⌘ Read more
Šafárik – 230 rokov od narodenia
Pavel Jozef Šafárik sa narodil 13. mája 1795 v malej slovenskej dedinke Kobeliarovo. Do Nového Sadu prišiel ako 24-ročný na pozvanie srbského metropolitu, kulpínskeho rodáka Stefana Stratimirovića, ktorý ho po príchode vymenoval za riaditeľa gymnázia. V Novom Sade si Šafárik založil rodinu – v roku 1822 sa oženil s 19-ročnou Júliou Ambrózyovou, príslušníčkou drobnej slovenskej zemianskej rodiny z Veľkej Kikindy. Spolu mali päť detí. Do spoločenského živ … ⌘ Read more
A brief history of the numeric keypad
The title is a lie. This isn’t brief at all. Picture the keypad of a telephone and calculator side by side. Can you see the subtle difference between the two without resorting to your smartphone? Don’t worry if you can’t recall the design. Most of us are so used to accepting the common interfaces that we tend to overlook the calculator’s inverted key sequence. A calculator has the 7–8–9 buttons at the top whereas a phone uses the 1–2–3 format. Subtle, but … ⌘ Read more
Raining so hard tonight , I saved 5 cats ⌘ Read more
Create ctrl-alt-key mappings? ⌘ Read more
my cat went messing 3years now , i still think about her 💔 her name was jessica ⌘ Read more
MacOS Sequoia 15.5 Update Released with Bug Fixes & Security Enhancements
MacOS Sequoia 15.5 is now available as a software update for Mac users running the Sequoia operating system. The system software update includes bug fixes and security enhancements, but does not appear to include any new features or other major changes. Additionally, Apple has also released MacOS Ventura 13.7.6 and macOS Sonoma 14.7.6 for Mac, … [Read More](https://osxdaily.com/2025/05/12/macos-sequoia-15-5-update-downlo … ⌘ Read more
iOS 18.5 Update Released for iPhone & iPad with Bug Fixes & Security Enhancements
iOS 18.5 for iPhone and iPadOS 18.5 for iPad have been released by Apple. According to the release notes accompanying the update download, the software updates primary focus is the introduction of a new Pride Harmony LGBTQ wallpaper. Additionally, parents will now receive a notification when the Screen Time passcode is used on a childs … [Read More](https://osxdaily.com/2025/05/12/ios-18-5-update-iphone-ip … ⌘ Read more
A brief history of the BSD Fast FileSystem
We’re looking at an article from 2007 here, but I still think it’s valuable and interesting, especially from a historical perspective. I first started working on the UNIX file system with Bill Joy in the late 1970s. I wrote the Fast File System, now called UFS, in the early 1980s. In this article, I have written a survey of the work that I and others have done to improve the BSD file systems. Much of this research has been incorporated into other … ⌘ Read more
Raspberry Pi OS Update Finalizes Bookworm-Based Release Ahead of Debian Trixie
A new version of Raspberry Pi OS is now available, marking what is likely the final release based on Debian Bookworm before the upcoming transition to Debian Trixie later this year. The update introduces usability enhancements, bug fixes, and performance optimizations across the system. One notable addition is a customized screen locking mechanism based on […] ⌘ Read more
If it fits, it ships ⌘ Read more
Armbian Updates Add OMV Support, Boot Improvements, and Rockchip Optimizations
The Armbian development team has rolled out a series of notable updates this week, introducing enhancements across software usability, bootloader standardization, and hardware compatibility. One of the most significant additions is the integration of OpenMediaVault into the Armbian software installer. OpenMediaVault is now available via the armbian-config interface, offering users an easy … ⌘ Read more
The Barbican
Article URL: https://arslan.io/2025/05/12/barbican-estate/
Comments URL: https://news.ycombinator.com/item?id=43964136
Points: 500
# Comments: 173 ⌘ Read more
Master CRLF Injection: The Underrated Bug with Dangerous Potential
Learn how attackers exploit CRLF Injection to manipulate HTTP responses, hijack headers and unlock hidden vulnerabilities in modern web…
[Continue rea … ⌘ Read more
Demonstrably Secure Software Supply Chains with Nix
An explanation how Nix can revolutionize your software supply chain security, enabling verifiable integrity and offline rebuilds from source.
My cow is 2.3kg at 4 years old. ⌘ Read more