Category Archives: open source

Summing up Taiwan Visit for OWASP Taiwan Week 2017

      No Comments on Summing up Taiwan Visit for OWASP Taiwan Week 2017

I recently had a chance to visit Taiwan, all thanks to OWASP Taiwan Chapter for inviting me as a speaker for OWASP Taiwan Week 2017 and being such wonderful hosts. Here’s a quick sum up of the event in my point of view. OWASP OWASP stands for Open Web Application… Read more »

Introducing minor improvements to CSRF Protector PHP

The OWASP CSRFProtector project started with an aim to develop a solution that can mitigate Cross Site Request Forgery in web applications without much developer effort. The most common solution for mitigating CSRF is using a token which cannot be retrieved by the attacker, thus ensuring the authenticity of the… Read more »

Todofy live help PoC

      No Comments on Todofy live help PoC

Recently I tried to create a proof of concept on integrating an IDE (VS Code), Version Control System (git, github) & a team communication platform (slack). The problem statement might sound more of a first world problem or possibly not even that: Say a group of software engineers are working on… Read more »

logging out and then logging in throws 403 error with CSRF Protector PHP – fix / workaround

Recently an interesting bug came up in CSRF Protector PHP. Read the entire issue thread on Github. If you log out of your website and then try to login again there only, CSRF Protector throws 403 – forbidden response. So this comes by design because first thing that you do… Read more »

CSRF protector – concept, design and future

      No Comments on CSRF protector – concept, design and future

CSRF – Cross Site Request Forgery “Cross-Site Request Forgery (CSRF) is a type of attack that occurs when a malicious Web site, email, blog, instant message, or program causes a user’s Web browser to perform an unwanted action on a trusted site for which the user is currently authenticated. The… Read more »

EasyWiki – another chrome extension for wikipedia

      No Comments on EasyWiki – another chrome extension for wikipedia

Now that I have learned to make chrome extensions, I just can’t stand user interface that’s not friendly to me. This time its wikipedia. So the problem I face with wiki is its too much information at a place and for a person like me who find it very difficult… Read more »

Github Report – a report card on Github!

      No Comments on Github Report – a report card on Github!

This is a totally fun project which I intend to do very slowly, and add codes to in my free time or if I get some cool ideas. So what’s Github Report: its another chrome extension that shows more information on Github profile page, than Github actually does. So the work flow… Read more »