Description A Major vulnerability has been discovered during the security assessment of Morocco’s COVID-19 Mobile Tracing Application Wiqaytna.
It concerns a core component of the application (Authentication) and can be classified under A2:2017-Broken Authentication in OWASP Top Ten or CWE-287: Improper Authentication in Common Weakness Enumeration.
PoC || GTFO: #Docker + #Traefik + #Jenkins + #OWASP — BB 0.8
N.B: [This paper is not].append[‘Cloud/InfoSec Tutorial/Workshop’].
It should only be considered as a “Spontaneous Prose” of an ongoing journey, about building a bridge between InfoSec and DevOps industries through #SE, #Cloud, #OpenSource and #BugBounty.
IRL Direct Human Reference Oh hai o/
TL;DR: This is not your usual full disclo delivery. it’s a 4chan-style lampoon, or what we could call in French “un pamphlet 2.
#OpenSource + #DevOpsSec + #Hackers — BB 0.7 N.B: This paper is not an InfoSec research article, a history/symbolism essay or an official statement from Yogosha.
It should only be considered as a “Spontaneous Prose”* **of an ongoing journey, about building a bridge between InfoSec and DevOps industries through #SE, #Cloud, #OpenSource and #BugBounty.
FUD-Free insider stories live from the Unicorn pile of Poo — BB 0.1 “Throughout human history, as our species has faced the frightening, terrorizing fact that we do not know who we are, or where we are going in this ocean of chaos, it has been the authorities — the political, the religious, the educational authorities — who attempted to comfort us by giving us order, rules, regulations, informing — forming in our minds — their view of reality.