Here’s a new entry for the “stupid things on my part which weren’t obvious because of obscure error messages” book. Actually, the error message makes some sense in retrospect but then again, everything is always a lot clearer after the fact. The scenario in this instance relates to the following three tables in ASafaWeb: What these guys are describing is that when a log entry of a scan is created, it may have many entries of the X-Powered-By header (this comes through as a comma delimited collection). A typical way of normalising this relationship is to drop a mapping table in the middle, in this instance the “LogXPoweredByHeader”. The cardinality displayed above...
I usually run private workshops around these, here's the upcoming public events I'll be at:
- DDD: 3 Dec, Brisbane (Australia)
- Workshop: Hack Yourself First: How to go on the Cyber-Offence: 16-17 Jan, London (United Kingdom)
- NDC London: 18-20 Jan, London (United Kingdom)
- Workshop: Hack Yourself First: How to go on the Cyber-Offence: 25-26 Jan, Leuven (Belgium)
- ZIONSECURITY Conference: 27 Jan, Leuven (Belgium)
- Here's how I verify data breaches
- When a nation is hacked: Understanding the ginormous Philippines data breach
- The world needs more stupid security researchers – join me!
- It’s time that you – the vulnerable human – brush up on your social engineering skills with Pluralsight
- How I optimised my life to make my job redundant