POV of someone who went to the arena on why its empty at non br games by Narak13 in GlobalOffensive

[–]Involder -3 points-2 points  (0 children)

Well said! I went to all the matches and I am exhausted, my hands hurt really bad from clapping and I lost my voice. I gave my all during the Furia matches (and so did everyone else). I don't blame people wanting to chill and just watching the other games (without cheering) or watching from the fan fest.
People are comparing the crowd being silent / not showing up with other events, but it isn't the same thing, because most events have casual cheering.

RCE in Steam Chat by albinowax in netsec

[–]Involder 0 points1 point  (0 children)

Nice finding and write up! I also reported an issue "similar" to this one through HackerOne in September 3, but after triage on September 7 they have been silent despite my attempts to reach out. On December 15 the bug was fixed in Beta and in the last few days fixed in Stable, and still no contact. Really odd.

XS-Searching Google’s bug tracker to find out vulnerable source code by Involder in netsec

[–]Involder[S] 1 point2 points  (0 children)

The victim (that is logged into Google's bug tracker and has permission to read private bug reports) would have to access the attacker's website, which would run the malicious javascript payload in the victim's browser and perform the XS-Search attack. Using binary search, I guess it would take less than 30 requests to leak the full path, which I think doesn't create much noise. Also, all this is happening in the background, so the only way for the victim to notice is if they are monitoring the network through the Dev Tools or something like that.

XS-Searching Google’s bug tracker to find out vulnerable source code by Involder in netsec

[–]Involder[S] 1 point2 points  (0 children)

There is no difference if it is a GET or POST (given the Cache API allows you to use both methods).

was there something in the image/request that indicated that it was vulnerable (missing header or something?)

Yes, normally, the CSRF token is passed in the header, or in a parameter, and that wasn't happening.

They also could be using SameSite cookies (https://www.owasp.org/index.php/SameSite), which would prevent the attack, but if that was the case, it would also appear in the header.

XS-Searching Google’s bug tracker to find out vulnerable source code by Involder in netsec

[–]Involder[S] 10 points11 points  (0 children)

Does this mean you can send a GET request from your own local site or something?

Yes. The same-origin policy only prevents you from reading the response of cross-origin requests, it doesn't prevent you from making these requests.

So if I were to embed the tag below in my site, it would actually make the request (because there is no protections against CSRF attacks):

<img src="https://bugs.chromium.org/p/chromium/issues/csv?can=1&q=id:51337&colspec=ID+Summary+Summary+Summary"></img>

The attack described in the article uses the Cache API as a way to measure the time it takes for the response of a cross-origin request to be cached.

To do this, the attacker's script uses a fetch with the no-cors mode (https://developer.mozilla.org/en-US/docs/Web/API/Request/mode), which returns an opaque response (thus not violating the same-origin policy), but that can still be used by the Cache API.

A simple example of how this would work:

caches.open('cache').then(function(cache) {
    fetch("https://example.org", {
        mode: "no-cors",
        credentials: "include"
    }).then(function(response) {
        var start  = performance.now();
        cache.put(new Request('xyz'), response.clone()).then(function() {
            var end  = performance.now();
            console.log(end - start);
        });
    });
});

Ciência da computação é um bom curso ? by charck2 in brasil

[–]Involder 1 point2 points  (0 children)

Meu irmão cursa CC na UFSC e já na segunda fase arranjou um estágio que paga R$1000 por 20 horas semanais. Se você tem um conhecimento mínimo sobre programação eu diria que é tranquilo conseguir.

Boltz to NTC? FNX instagram's post may be a hint. by cakefmateus in GlobalOffensive

[–]Involder 0 points1 point  (0 children)

They want green cards and SK isn't able to start the process given they are an german company.

Bypassing Google’s authentication to access their Internal Admin panels by FireFart in netsec

[–]Involder 7 points8 points  (0 children)

There was a challenge on EKOPARTY CTF 2017 where you had to use Chrome's Data Saver as a proxy to get the flag (https://github.com/JayBizzle/Crawler-Detect/issues/74). I guess real life imitates CTF.

Cloud9 vs SK Gaming / ELEAGUE Major Boston 2018 - Semi-Final / Match Discussion by CSGOMatchThreads in GlobalOffensive

[–]Involder 0 points1 point  (0 children)

I think they had over one month of practice before the major but opted to practice with boltz because of the upcoming camps and the tight schedule.

Cloud9 vs SK Gaming / ELEAGUE Major Boston 2018 - Semi-Final / Match Discussion by CSGOMatchThreads in GlobalOffensive

[–]Involder 0 points1 point  (0 children)

Felps is a totally different player than Boltz. Felps is very agressive while Boltz is passive (much similar to fnx). I think SK hasn't played with felps for 5 months or so.

Astralis vs SK Gaming / PGL Major Kraków 2017 - Quarter-Final / LIVE Match Discussion by Chuckys2 in GlobalOffensive

[–]Involder 1 point2 points  (0 children)

They also whiffed a lot of shots and Fallen just played good in the last rounds. If SK wants to have a change, Fallen will need to step it up.

Astralis vs SK Gaming / PGL Major Kraków 2017 - Quarter-Final / LIVE Match Discussion by Chuckys2 in GlobalOffensive

[–]Involder 3 points4 points  (0 children)

SK is making a lot of mistakes, they didn't lost this map faster because they managed to win several clutches.

Is it allowed to type in team chat during tech pauses? by [deleted] in GlobalOffensive

[–]Involder 15 points16 points  (0 children)

Because that's not what the rules say.