No you can’t ‘WAF patch’ curl vulns CVE-2023-38545 and CVE-2023-38546
Conditions for today’s curl CVE releases (CVE-2023-38545, CVE-2023-38546) and why you’ve got to say ‘NO’ to WAF patching them. For the good of all mankind.
What can you do with Web3 anyway?
Some ‘Web 3.0’ developments that may be of interest to hackers.
Filecoin and Arweave vs. copyright enforcers
Contemporary decentralized file storage seems like an unrealized threat to copyright enforcers and brand-protectors.
2021 OWASP Global AppSec talk on open source for anti-bot
Information on my 2021 OWASP Global AppSec US talk ‘How to Thwart Malicious Automation and Kick Bot Butt for $0’.
Towards a general anti-automation and botting program
Despite what vendors will tell you, defending against malicious automation and ‘bots’ takes a multi-pronged approach.