Mar 28 · 5 min read · TL;DR: HTTP/2 replaces the inefficient six-connection limit of HTTP/1.1 with a single, multiplexed stream. By breaking assets into small, interleaved chunks, it eliminates head-of-line blocking and pr
Join discussion
Feb 12 · 9 min read · Why Traditional Server Push Strategies Fail in Modern Environments The original Server Push specification assumed a simpler web architecture. In 2025, several factors make naive implementations problematic: Cache complexity across edge networks: Mode...
Join discussionJan 5 · 3 min read · 前言 現代 Web 應用的複雜性與日俱增,從過去單純的靜態網頁,演變為功能豐富、高度互動的即時平台。使用者期望更快的載入速度、更流暢的操作體驗,以及更安全的資料交換。這些效能需求直接挑戰了支撐網路世界的底層通訊協定。為了應對這些挑戰,從 HTTP 到 TLS 的核心協定經歷了持續的演進。本文將深入探討 HTTP、TLS 及其他關鍵通訊協定的發展歷程,剖析它們在不同階段遇到的效能瓶頸,以及為解決這些瓶頸而催生的創新技術與架構思維。 ---------------------------------...
Join discussionDec 11, 2025 · 6 min read · The scenario is a proxy exposing https protocol. SNI, Server Name Indication, happens before ssl handshake negotiation. If SNI is used for routing https request, the same port can be used for multiple domains The problem is on passing the headers: X...
Join discussionAug 29, 2025 · 2 min read · Have you ever stopped to wonder how you can video call a friend in another country, stream a movie instantly, or order food at the tap of a button? All of this happens because of one powerful invention: the Internet. It’s the invisible infrastructure...
Join discussion
Aug 23, 2025 · 3 min read · 🗓️ Day - 3: REST APIs and HTTP Methods 🌐 What are REST APIs? REST (Representational State Transfer) is a type of API that follows specific rules and guidelines for communication. It uses HTTP methods like: GET POST PUT DELETE It defines f...
Join discussion
Aug 20, 2025 · 9 min read · Tổng quan Lỗ hổng MadeYouReset (CVE-2025-8671) đã nổi lên như một mối đe dọa bảo mật nghiêm trọng trong hệ sinh thái HTTP/2, được các nhà nghiên cứu tại Đại học Tel Aviv công bố vào ngày 13 tháng 8 năm 2025. Điểm đặc biệt nguy hiểm của lỗ hổng này là...
Join discussion
Aug 16, 2025 · 2 min read · Our target is to exploit a hypothetical web application, simulating real-world scenarios. To demonstrate HTTP/2 request splitting, we will follow a step-by-step solution provided by the lab: Setup with Burp Suite: Start by sending a request for GET ...
Join discussion
Aug 5, 2025 · 5 min read · When we browse a website, watch a video, or join a Zoom call, a complex series of events occurs behind the scenes. Understanding how the internet works requires exploring the OSI Model, TCP/IP protocols, HTTP communication, and DNS Resolution. OSI Mo...
Join discussion
