bubu's Avatar

bubu

@albertofdr.bsky.social

about://inducebrowsercrashforrealz ๐Ÿ•๐Ÿ–ฅ๏ธ https://albertofdr.github.io/

185 Followers  |  147 Following  |  9 Posts  |  Joined: 13.11.2024  |  1.597

Latest posts by albertofdr.bsky.social on Bluesky

Blink: Intent to Ship: Escape "<" and ">" in attributes on serialization Blink: Intent to Ship: Escape "<" and ">" in attributes on serialization

Blink: Intent to Ship: Escape "<" and ">" in attributes on serialization

09.05.2025 09:33 โ€” ๐Ÿ‘ 2    ๐Ÿ” 2    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

That's me!

03.05.2025 12:52 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML

Blink: Intent to Deprecate and Remove: Remove auto-detection of ISO-2022-JP charset in HTML

07.04.2025 17:41 โ€” ๐Ÿ‘ 6    ๐Ÿ” 1    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

Thanks! I noticed this two months ago, and I thought they completely removed the option to see the source.

27.02.2025 14:40 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0

Yeah hahahahaha but from the full spec document, not including the header,
Firefox and Safari, IIRC, implement more or less the rest of stuff ;)

18.02.2025 12:31 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0

I completely agree, but are the standards that regulate the rest of specs that define a permission ๐Ÿ˜…

17.02.2025 13:59 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0

I'll take a look, thanks :)
Btw, when do you plan to deploy PP header? xD

15.02.2025 10:04 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0

Hope Bluesky adds bookmarks soon. I can't wait to have hundred of bookmarks Iโ€™ll never read, while lying to myself that I will.

10.02.2025 10:42 โ€” ๐Ÿ‘ 0    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
You Shall Not Get Access ๐Ÿง™๐Ÿปโ€โ™‚๏ธ: Browser Permissions | WebSec! Web Security Educational Blog

I posted a blog about how browser permissions work. albertofdr.github.io/web-security...

29.01.2025 12:16 โ€” ๐Ÿ‘ 6    ๐Ÿ” 2    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 0
facebook error

facebook error

netflix error

netflix error

okta error

okta error

whatsapp error

whatsapp error

Handling Cookies is a Minefield:

Inconsistencies in the HTTP cookie specification and its implementations have caused a situation where countless websites (including Facebook, Netflix, Okta, WhatsApp, Apple, etc.) are one small mistake away from locking their users out.

grayduck.mn/2024/11/21/h...

21.11.2024 17:11 โ€” ๐Ÿ‘ 169    ๐Ÿ” 54    ๐Ÿ’ฌ 13    ๐Ÿ“Œ 8
WebSec! Web Security Educational Course

From time to time I write about web/browser stuff here (albertofdr.github.io/web-security...) and post about CTF writeups (albertofdr.github.io/post/hkcert-...). That said, @ericlaw.bsky.social should definitely be on the list!

02.12.2024 10:24 โ€” ๐Ÿ‘ 2    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
DEF CON 32 - Exploiting the Unexploitable Insights from the Kibana Bug Bounty - Mikhail Shcherbakov
YouTube video by DEFCONConference DEF CON 32 - Exploiting the Unexploitable Insights from the Kibana Bug Bounty - Mikhail Shcherbakov

If you missed it, my #DEFCON talk "Exploiting the Unexploitable: Insights from the Kibana Bug Bounty" is now live on YouTube!

youtu.be/H-bhmSwnRdY

27.11.2024 09:08 โ€” ๐Ÿ‘ 13    ๐Ÿ” 6    ๐Ÿ’ฌ 1    ๐Ÿ“Œ 1
Post image

This one is also funny!

25.11.2024 06:07 โ€” ๐Ÿ‘ 1    ๐Ÿ” 0    ๐Ÿ’ฌ 0    ๐Ÿ“Œ 0
The 2024 Web Almanac The Web Almanac is an annual state of the web report combining the expertise of the web community with the data and trends of the HTTP Archive.

๐Ÿšจ Introducing the 2024 Web Almanac, our annual "state of the web" report!

๐Ÿ”– almanac.httparchive.org/en/2024/

21 chapters (11 publishing today, the rest to follow)
65 contributors for today's chapters (more to follow)
17M websites analyzed
83 TB of data processed
628 queries written

11.11.2024 16:30 โ€” ๐Ÿ‘ 70    ๐Ÿ” 39    ๐Ÿ’ฌ 5    ๐Ÿ“Œ 14

@albertofdr is following 20 prominent accounts