Egor Homakov
Homakov Blogspot. Security consulting: <a href="https://sakurity.com">Sakurity</a> Twitter: <a...
Read Homakov.blogspot.com news digest here: view the latest Homakov Blogspot articles and content updates right away or get to their most visited pages. Homakov.blogspot.com is not yet rated by Alexa and its traffic estimate is unavailable. It seems that Homakov Blogspot content is notably popular in USA. We haven’t detected security issues or inappropriate content on Homakov.blogspot.com and thus you can safely use it. Homakov.blogspot.com is hosted with Google LLC (United States) and its basic language is English.
Content verdict: Safe
Website availability: Live
Language: English
Last check:
-
N/A
Visitors daily -
N/A
Pageviews daily -
4
Google PR -
N/A
Alexa rank
Best pages on Homakov.blogspot.com
-
Security consulting: <a href="https://sakurity.com">Sakurity</a> Twitter: <a href="http://twitter.com/homakov">@homakov</a>. homakov@gmail.com
-
Egor Homakov: How to send DM on Twitter w/o permission
I just recalled " SMS commands " feature and tried to send a DM (private, direct message) with "Share on Twitter"-button. It works! Twitt...
-
Meanwhile working hard on Pagebox. XHR proxy is done, looking forward your feedback TL;DR there is a way to detect current URL in iframe o...
Homakov.blogspot.com news digest
-
9 years
New posts will be published on http://sakurity.com/blog and less likely here. I will probably translate some good old ones from Egor-English to English. Thanks everyone for reading this!
-
9 years
Bitstamp problem and warm wallets
We are publishing an exciting report on Peatio exchanger soon and I've got quite a few thoughts on how to make exchangers' architecture and wallets more secure.
Then I see this. Five. Million. Dollars. In a hot wallet.
Ok, sure it's not everything they had. It's a small part of their assets. But I'm not going to believe this hack is not a big deal for them. I bet they are a little bit upset right now.... -
9 years
Blatant CSRF in Doorkeeper, most popular OAuth2 gem
I read a post about CSRF on DigitalOcean (in Russian) by Sergey Belove. My first reaction was, obviously, how come? DigitalOcean is not kind of a team that would have lame "skip_before_action :verify_authenticity_token".
DigitalOcean uses Doorkeeper, the most popular OAuth Provider library for rails apps and it manages clients, tokens, scopes and validations out of box.... -
9 years
New Paypal gateway UI is a disaster
Hey. I decided to get a paid plan on Github and Paypal looked like a good payment option to me. Click the blue button here:
This looks and feels really good. Lightweight elements, updated color scheme and new logo. Except one thing - how do I know this smooth and lovely popup asking for my Email and password is authorized / belongs to Paypal.com ?...
Domain history
| Web host: | Google LLC |
| Registrar: | MarkMonitor Inc. |
| Registrant: | Google LLC |
| Updated: | June 29, 2023 |
| Expires: | July 31, 2024 |
| Created: | July 31, 2000 |
Whois record
Safety scores
Trustworthiness
ExcellentChild safety
N/A
