infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

@raccoonformality well, not for long...
this post | permalink
Gemini suggested JSON Type Definitions and jdt-codegen, that looks really good! Unfortunately it doesn't support C/C++, but maybe we can do with linking against Rust libraries?

https://jsontypedef.com/docs/implementations/
this post | permalink
@joepie91 Kaitai would be useful for creating another JSON parser. What I'm looking for is something that spares me the trouble of validating against a schema and producing e.g. strongly typed objects in Java (instead of a bunch of JSONValue's).
this post | permalink
What kind of tool do I use if I want to automatically generate code in multiple languages for parsing text conforming a (e.g. JSON) schema to objects/structs, based on a given schema?

I already found a bunch of JSON schema validators, but I also want my text->typed object code to be fully generated.

#programming
this post | permalink
Cache Me If You Can (Sitecore Experience Platform Cache Poisoning to RCE)

https://labs.watchtowr.com/cache-me-if-you-can-sitecore-experience-platform-cache-poisoning-to-rce/

CVE-2025-34509 CVE-2025-34510 CVE-2025-34511
this post | permalink
Rage Against the Authentication State Machine

https://blog.silentsignal.eu/2025/06/14/gitblit-cve-CVE-2024-28080/

Beautiful authentication bypass in Gitblit from my old friends at @silentsignal !

CVE-2024-28080
this post | permalink
@ahihi "Sorry I can't hear you over the sound of my CRT monitor buzzing!"
this post | permalink
[RSS] exploits.club Weekly Newsletter 84 - Stealing Exploits, Competition Misconfigs, Android Physical Memory, And More

https://blog.exploits.club/exploits-club-weekly-newsletter-84-stealing-exploits-competition-misconfigs-android-physical-memory-and-more/
this post | permalink
[RSS] Partial Analysis of CVE-2025-38618

https://u1f383.github.io/linux/2025/08/28/partial-analysis-of-CVE-2025-38618.html
this post | permalink
@tychotithonus
this post | permalink
Next Page