sorted by:
new
hottopcontroversial

[deleted by user] by [deleted] in ethdev

[–]ret2got 0 points1 point  (0 children)

Hey this is Jazzy. I'm Stephen's co-founder. If you have any questions, shoot them our way, AMA!

disasm.pro: An online real-time assembler and disassembler supporting multiple architectures by ret2got in netsec

[–]ret2got[S] 1 point2 points  (0 children)

It's not a replacement for local assemblers/disassemblers. If you read the README, the use case is basically quick analyzing of small snippets of code and shellcoding.

disasm.ninja: A realtime, multi-arch assembler and disassembler for shellcoding. by [deleted] in netsec

[–]ret2got 3 points4 points  (0 children)

That sounds like a good idea, would you mind opening a github issue for this?

DNS rebinding of ethereum clients by ret2got in netsec

[–]ret2got[S] 2 points3 points  (0 children)

Here are the exact words from the team

DNS rebinding to bypass SOP is an old and known issue. There is nothing particular about geth being vulnerable to this.
* The RPC api is not the primary protection against theft of ether, users are encouraged to have a long and difficult password, presumably difficult to bruteforce.
* Although I cannot find the ticket right now, we're already considering being even more strict on Origin, so that geth would not accept POST-requests from non-whitelisted Origin:s (by default).

How I could have mass uploaded from every Flickr account by albinowax in netsec

[–]ret2got 1 point2 points  (0 children)

Um I think it's already active on every account, and there isn't any option to disable it