0 | H.A.T

0

Wiqaytna (وقايتنا) Disclosure

Description A Major vulnerability has been discovered during the security assessment of Morocco’s COVID-19 Mobile Tracing Application Wiqaytna. It concerns a core component of the application (Authentication) and can be classified under A2:2017-Broken Authentication in OWASP Top Ten or CWE-287: Improper Authentication in Common Weakness Enumeration.

How to implement Web's Hospital

PoC || GTFO: #Docker + #Traefik + #Jenkins + #OWASP — BB 0.8 N.B: [This paper is not].append[‘Cloud/InfoSec Tutorial/Workshop’]. It should only be considered as a “Spontaneous Prose” of an ongoing journey, about building a bridge between InfoSec and DevOps industries through #SE, #Cloud, #OpenSource and #BugBounty.

Facebook Privacy Full Disclosure

IRL Direct Human Reference Oh hai o/ TL;DR: This is not your usual full disclo delivery. it’s a 4chan-style lampoon, or what we could call in French “un pamphlet 2.

How to Build Internet's Hospital

#OpenSource + #DevOpsSec + #Hackers — BB 0.7 N.B: This paper is not an InfoSec research article, a history/symbolism essay or an official statement from Yogosha. It should only be considered as a “Spontaneous Prose”* **of an ongoing journey, about building a bridge between InfoSec and DevOps industries through #SE, #Cloud, #OpenSource and #BugBounty.

InfoSec Industry in the dawn of a new Era

FUD-Free insider stories live from the Unicorn pile of Poo — BB 0.1 “Throughout human history, as our species has faced the frightening, terrorizing fact that we do not know who we are, or where we are going in this ocean of chaos, it has been the authorities — the political, the religious, the educational authorities — who attempted to comfort us by giving us order, rules, regulations, informing — forming in our minds — their view of reality.