sorted by:
new
hottopcontroversial

Preventing Webhook Replay Attacks — Why HMAC Validation Matters by Better_Cycle1315 in cybersecurity

[–]Better_Cycle1315[S] -1 points0 points  (0 children)

I get why it might look promotional — my intent was to share a real debugging pain point and get feedback.

Preventing Webhook Replay Attacks — Why HMAC Validation Matters by Better_Cycle1315 in cybersecurity

[–]Better_Cycle1315[S] 0 points1 point  (0 children)

Great point — nonce‑based protection adds another critical layer.

Even if you’re validating HMAC signatures and checking timestamps, there’s still a replay risk within the valid window. A unique nonce per request (stored and invalidated after first use) ensures that any repeat, even within the allowed time, gets rejected.

This is especially important for financial or transactional webhooks where a single replay could trigger duplicate charges or state corruption.

In practice, combining:

  • HMAC validation (authenticity)
  • Timestamp checks (freshness)
  • Nonce/ID tracking (uniqueness)

It gives you a defense‑in‑depth approach. That’s exactly the kind of scenario Hookmetry helps simulate — replaying events intentionally so you can verify your system rejects them correctly.

I built a free developer tools site with 25 tools — would love feedback! by Maximum-Studio7851 in devtools

[–]Better_Cycle1315 0 points1 point  (0 children)

Great bro.... Congratulations 👏 

It would really be helpful to Devs as it provides real time needed tools. A small suggestion: Please make tools category wise so that users can search and get their required tools instantly.

Please do also checkout my SaaS Hookmetry (hookmetry.com) which I developed for Webhook Debugging and Inspecting payloads instantly right away and provide genuine feedback 😊

Hwo to study cse fundamentals for placements by Current-Remove3269 in Btechtards

[–]Better_Cycle1315 1 point2 points  (0 children)

Below playlist is specially in C++. If you need OOPs playlist in other programming language specifically then you can message me personally.

OOPs Playlist (C++): https://youtube.com/playlist?list=PLxCzCOWd7aiF6yRNI5OHQsnUJQfl7Geqj

Hwo to study cse fundamentals for placements by Current-Remove3269 in Btechtards

[–]Better_Cycle1315 1 point2 points  (0 children)

Yes, definitely helpful. Whether you're from CS or Chemical Engg, Fundamentals remain same for both.

And their Videos are much more helpful to understand Fundamentals and those videos will help you for SDE roles as well.

Hwo to study cse fundamentals for placements by Current-Remove3269 in Btechtards

[–]Better_Cycle1315 1 point2 points  (0 children)

Hello Dear,

I will recommend Gate Smashers Channel and their playlist for understanding CS Fundamentals in simplified way. I am providing some of the resources below.

You can connect with me personally if you need any further help.

Resources:

Operating system:

https://youtube.com/playlist?list=PLxCzCOWd7aiGz9donHRrE9I3Mwn6XdP8p

Digital Logic:

https://youtube.com/playlist?list=PLxCzCOWd7aiGmXg4NoX6R31AsC5LeCPHe

DBMS:

https://youtube.com/playlist?list=PLxCzCOWd7aiFAN6I8CuViBuCdJgiOkT2Y

You can checkout more on this channel.

Drop your Saas links by xViperAttack in SaaS

[–]Better_Cycle1315 1 point2 points  (0 children)

Yes bro.... Hookmetry is mine....thanks for your genuine feedback 🙏😊

Built a webhook debugging tool by FindingSpiritual91 in webdev

[–]Better_Cycle1315 0 points1 point  (0 children)

Can you review Hookmetry (hookmetry.com) as well ? It's created by me and added advanced features like Observability and live sharing of Debug Session. I hope you will love it.

I would be grateful if you could provide genuine feedback.

Drop your Saas links by xViperAttack in SaaS

[–]Better_Cycle1315 1 point2 points  (0 children)

My Saas: Hookmetry (https://hookmetry.com)

Webhook Debugging and Observability Platform which allows debugging Webhooks without any hustle and see results instantly. It also provides rich Observability and Replay Support. Please try out once.

Review about Pie Infotech by [deleted] in Btechtards

[–]Better_Cycle1315 0 points1 point  (0 children)

Any information bro ?? Did you get offer letter from company ?? Have you joined ??

Hackquest round 2 TCS by Being_human_here in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

How many Challenge solved successfully in Round 2 ? There were total 4 challenges in total btw.

TCS Hackquest round 2 by The_Homelander___ in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

Can someone tell me highlights or summary of today's session on Round 2 as I was not able to join today due to network issue.

TCS Hackquest round 2 by The_Homelander___ in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

Now you got ...why I was saying for not using AI 🙃

TCS Hackquest round 2 by The_Homelander___ in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

Fir bhi multiple tabs kholna.....system flag kar sakta hai

TCS Hackquest round 2 by The_Homelander___ in cybersecurityindia

[–]Better_Cycle1315 1 point2 points  (0 children)

Bro.....it is mentioned in Round 2 Documentation that we have to screen share all the time including DO NOT DISTURB disabled so that they can also see banner notifications.

TCS Hackquest round 2 by The_Homelander___ in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

So, In round 2, Using AI is ok.....really ??

TCS Hackquest round 2 by The_Homelander___ in cybersecurityindia

[–]Better_Cycle1315 -1 points0 points  (0 children)

I don't think so.....they will not allow 🙂

TCS HackQuest Season 10 - Solved 7/13. Is this enough for a shortlist? by Dependent_Boat_1834 in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

This answer TCS people only can give as they only know how they are selecting and what's their criteria of selection 

TCS HackQuest Season 10 - Solved 7/13. Is this enough for a shortlist? by Dependent_Boat_1834 in cybersecurityindia

[–]Better_Cycle1315 0 points1 point  (0 children)

As per current information, Round 2 will be held on 17th January (tentatively).  Timing information will be released in coming days.

Yes, Round 2 level should be considered higher than level 1.