Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Conversation

Notices

Embed this notice
Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-May-2024 18:13:42 JST Ryan Castellucci :nonbinary_flag:

I put all the xss stuff from the big list of naughty strings into a tls certificate, lets see if anyone notices.

In conversation about 6 months ago from infosec.exchange permalink
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Saturday, 18-May-2024 18:20:10 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  
  this is a fantastic use case for certificate compression
  
  In conversation about 6 months ago permalink
- Embed this notice
  Robin Bradshaw (en4rab@infosec.exchange)'s status on Saturday, 18-May-2024 20:41:37 JST Robin Bradshaw
  in reply to
  
  @ryanc These sites should notice:
  https://www.sslmarket.com/ssl-verification-tool/
  https://www.sslchecker.com/sslchecker
  https://dnschecker.org/ssl-certificate-examination.php
  https://ipsaya.com/en/ssl-tls
  In conversation about 6 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: www.sslmarket.com
    
    Check the SSL/TLS certificate on your server
    
    from ZONER a.s.
    
    Check the trust of the SSL/TLS certificate on your server and its deployment. Our tool will also help you solve the most common issues.
  2. Domain not in remote thumbnail source whitelist: www.sslchecker.com
    
    SSL Certificate Checker
  3. Domain not in remote thumbnail source whitelist: static.dnschecker.org
    
    SSL Checker - Check SSL Certificate
    
    SSL Checker helps you to diagnose problems with your SSL/TLS certificate installation. Check SSL certificate to see if it is appropriately installed on your website or not?
  4. Domain not in remote thumbnail source whitelist: ipsaya.com
    
    SSL / TLS Certificate Checker Tools for a Website
    
    from IPSaya.com
    
    Check your of Website SSL / TLS certificate right now with SSL / TLS Checker tools whether certificate used is safe from bugs and vulnerabilities?
  Ryan Castellucci :nonbinary_flag: repeated this.
- Embed this notice
  Ryan Castellucci :nonbinary_flag: (ryanc@infosec.exchange)'s status on Sunday, 19-May-2024 18:58:00 JST Ryan Castellucci :nonbinary_flag:
  in reply to
  - Robin Bradshaw
  @en4rab
  Well, https://www.sslmarket.com/ssl-verification-tool/ is definitely vulnerable to XSS via crafted certificate.
  In conversation about 6 months ago permalink
  Attachments
  1. Domain not in remote thumbnail source whitelist: www.sslmarket.com
    
    Check the SSL/TLS certificate on your server
    
    from ZONER a.s.
    
    Check the trust of the SSL/TLS certificate on your server and its deployment. Our tool will also help you solve the most common issues.

Public

Conversation

Notices

Feeds