• Manifish_Destiny@lemmy.world
    link
    fedilink
    English
    arrow-up
    3
    ·
    3 days ago

    As a response to 3, I’m a professional pentester. I see several of the mistakes mentioned more than I’d like. Stuff like that still happens on the regular.

    I typically get higher profile brands similar to McDonald’s as well.

    • brie@programming.dev
      link
      fedilink
      English
      arrow-up
      2
      arrow-down
      1
      ·
      3 days ago

      Let me guess, you signed an NDA, and won’t tell anyone which brands had badly configured access control in their web apps?

      Each red flag is okay, but all together is rather strange. It’s kinda classic to say that pajeets write shitty code.

        • brie@programming.dev
          link
          fedilink
          English
          arrow-up
          1
          arrow-down
          1
          ·
          16 hours ago

          Good, because it’s not of interest.

          Even better for your career is being an actual researcher with a good grasp on heap grooming, MAC circumvention instead of spreading FUD over something that can easily be detected with burp.