For the best experience on desktop, install the Chrome extension to track your reading on news.ycombinator.com
Hacker Newsnew | past | comments | ask | show | jobs | submit | history | fromregister
Taking Over DigitalOcean Domains via a Lax Domain Import System (thehackerblog.com)
385 points by infosecau on Aug 26, 2016 | past | 170 comments
Obtaining Wildcard SSL Certificates from Comodo via Dangling Markup Injection (thehackerblog.com)
258 points by pfg on July 29, 2016 | past | 58 comments
Obtaining Arbitrary Wildcard SSL Certificates from Comodo (thehackerblog.com)
2 points by ehPReth on July 26, 2016 | past
Obtaining Arbitrary Wildcard SSL Certs from Comodo via Dangling Markup Injection (thehackerblog.com)
2 points by mandatory on July 25, 2016 | past
International Incident: Gaining Control of a .int Domain Name with DNS Trickery (thehackerblog.com)
1 point by adamnemecek on July 12, 2016 | past
Gaining Control of a .int Domain Name with DNS Trickery (thehackerblog.com)
2 points by TheAuditor on July 12, 2016 | past
Gaining control of a .int TLD (thehackerblog.com)
5 points by robk on July 11, 2016 | past
The International Incident – Gaining Control of a .int Domain Name (thehackerblog.com)
2 points by mrb on July 11, 2016 | past
The International Incident – Gaining Control of a .int Domain with DNS Trickery (thehackerblog.com)
4 points by myworldplz on July 10, 2016 | past
Poisoning the Well – Compromising GoDaddy Customer Support with Blind XSS (thehackerblog.com)
1 point by myworldplz on May 9, 2016 | past
The “Unhackable” WordPress Blog – Finding Security in the Static (thehackerblog.com)
1 point by mandatory on Oct 21, 2015 | past
Live view of orphaned domains pointed to release AWS IPs (thehackerblog.com)
1 point by mandatory on Oct 9, 2015 | past
Building an Rdio Flash Cross-Domain Exploit with FlashHTTPRequest (thehackerblog.com)
1 point by nmjohn on Sept 24, 2015 | past
Sonar – A Framework for Scanning and Exploiting Internal Hosts with a Webpage (thehackerblog.com)
2 points by infosecau on Aug 24, 2015 | past
Stealing Lastpass Passwords with Clickjacking (thehackerblog.com)
5 points by infosecau on July 9, 2015 | past
The NoScript Misnomer (thehackerblog.com)
275 points by dwgirvan on June 28, 2015 | past | 66 comments
Picture a TLD – Screenshots of Every Nic.TLD Website (thehackerblog.com)
1 point by myworldplz on April 19, 2015 | past
Dirty Browser Enumeration Tricks – Using Chrome:// to Identify Firefox Plugins (thehackerblog.com)
5 points by mandatory on Sept 4, 2014 | past | 1 comment
Every C99.php shell is backdoored (thehackerblog.com)
130 points by chewxy on June 24, 2014 | past | 91 comments
A More Universal Router Payload – Backdooring the Linksys WRT54G Firmware (thehackerblog.com)
37 points by zachorr on Feb 22, 2014 | past | 5 comments
Samsung.com Account Takeover Vulnerability Write-up (thehackerblog.com)
5 points by lelf on Jan 24, 2014 | past
How I Got 5,000 GitHub Followers In Less Than 24 Hours (thehackerblog.com)
8 points by mandatory on Oct 30, 2013 | past | 6 comments
How Blackhats can/do use botnets to solve CAPTCHAs (thehackerblog.com)
1 point by pain_perdu on May 23, 2013 | past

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search:

HN For You