Security Journey's hi/5

Python Repos, Advanced SQL, NPM corruption, and more


Listen Later

5% of 666 Python repos had comma typos (including Tensorflow, PyTorch, Sentry, and V8)
Out of a group of GitHub repositories that had been checked, 5% had a comma problem. Either too few or too many commas somewhere in the library.

Advanced SQL Injection Cheatsheet​
This repository contains an advanced methodology of all types of SQL Injection.​ MySQL, PostgreSQL, Oracle, and MSSQL​

10 Threats ebook
Read about the eBook on 10 Greatest Threats to Your Application’s Security 2021 version.

Dev corrupts NPM libs ‘colors’ and ‘faker’ breaking thousands of apps
The colors library receives over 20 million weekly downloads on npm alone and has almost 19,000 projects relying on it. Whereas, faker receives over 2.8 million weekly downloads on npm, and has over 2,500 dependents.

How I Discovered Thousands of Open Databases on AWS​
My journey on finding and reporting databases with sensitive data about Fortune-500 companies, Hospitals, Crypto platforms, Startups during due diligence, and more.

...more
View all episodesView all episodes
Download on the App Store

Security Journey's hi/5By Security Journey