James Cookjamescook.dev·Dec 6, 2023EntraID: Switch back to previous Audit Logs experienceWhy change to legacy audit logs experience The biggest flaw in the new Audit Logs experience is that the filters cannot search a value, resulting in manual scrolling. New experience: Old experience: How to switch back Within the Audit Logs window, ...DiscussEntra ID
Gabi DobocanforSandwormblog.sandworm.dev·Sep 25, 2023PHP & Composer Support Is Here! 🐘We're excited to announce Sandworm is adding support for PHP via the Composer package manager. Composer has over 300,000 packages available, covering a wide range of functionality. This includes packages for web development, APIs, microservices, data...Discuss·500 readsPHP
Jamaltheatlanteanjamaltheatlantean.hashnode.dev·Sep 15, 2023Mastering Solidity VulnerabilitiesA good blockchain developer can account for a ton of reasons why Smart Contract Security should be taken seriously. The total amount of funds lost due to smart contract hacks totals $2.7 billion- a 1250% increase from 2020, sourced from BanklessTimes...Discuss·11 likes·29 readsSolidity
BuildBearbuildbear.hashnode.dev·Sep 8, 2023Most Common Vulnerabilities In Solidity: In-Depth Part 2This article will guide you through some of the most common vulnerabilities in Solidity, including Flashloan, overflow and underflow, tx.origin, Insecure Randomness, and Improper Input Validation Attacks. If you haven’t already, please check out Part...DiscussSolidity
BuildBearbuildbear.hashnode.dev·Sep 8, 2023Most Common Vulnerabilities In Solidity: In-Depth Part 1This article will walk you through some of the most common vulnerabilities in Solidity, such as Reentrancy, Incorrect Calculations, Oracle Failure/Manipulation, Weak Access Control, and Frontrunning Attacks. Not only that, but we’ll guide you on the ...DiscussSolidity
Gabi DobocanforSandwormblog.sandworm.dev·Sep 1, 2023🎡 Audit Your Workspaces With Sandworm v1.46.0Today we're excited to bring you some highly anticipated additions to our Audit and Cloud products: monorepos, workspaces, and npm v1 lockfile support. Monorepo Support Sandworm Cloud now scans repos for directories that contain a package.json manif...Discuss·224 readsJavaScript
CrabNebulaforCrabNebulacrabnebula.hashnode.dev·Jul 24, 2023Security Advisory for Tauri 1.4 (CVE-2023-34460)This post shares insight into the most recent Tauri security advisory, affecting the Tauri 1.4 release. You can learn more about the release itself on the Tauri Blog Post. The issue was discovered during an internal audit performed by our Director of...Discuss·7 likesTauri
Fora Softforasoft.hashnode.dev·Jun 7, 2023What Is Code Auditing And How to Conduct It: Evaluation CriteriaWriting code is just like solving a math problem: there’re many multiple ways you can do it, but there’s only one correct result. To make sure the solution you or another developer have chosen is correct, you can carry out code auditing. We do it as ...Discussaudit
Gabi DobocanforSandwormblog.sandworm.dev·Apr 15, 2023Dissecting Npm Malware: Five Packages And Their Evil Install ScriptsPackages published on npm can declare pre and post-install hooks, which are scripts that run, well, pre or post-install. That is to say, when the npm CLI installs a package, it also runs those scripts on your machine. It runs them silently, in the ba...Discuss·11 likes·11.4K readsnpm
hayao_khayao-k.dev·Mar 17, 2023Creating AWS resources for GitHub audit log streaming with CloudFormation.Introduction GitHub Enterprise Cloud audit logs support log streaming to various cloud providers. https://docs.github.com/en/enterprise-cloud@latest/admin/monitoring-activity-in-your-enterprise/reviewing-audit-logs-for-your-enterprise/streaming-the-a...Discuss·266 readsAWS