科技回声

8 条评论

I think the real conclusion here is... No substantial security issues were discovered. There are a few things github could change to better follow security best practices to help avoid future bugs.

评论 #33802965 未加载

plebb0t超过 2 年前

Ah yes, ISO 8061, Alpine ski-bindings — Selection of release torques values.<a href="https://www.iso.org/standard/75609.html" rel="nofollow">https://www.iso.org/standard/75609.html</a>Nice article btw.

评论 #33805816 未加载

评论 #33805056 未加载

londons_explore超过 2 年前

Doing this sort of thing to a live webservice is a good way to get a perma-ban...

评论 #33801377 未加载

aszen超过 2 年前

The cats tool looks interesting I'm curious how it handles fuzzing id columns, which would need a reference to another resource to actually test them. I would like a tool which can take insertion order of the api and start inserting things at random based on a spec to test it.

评论 #33807728 未加载

dtech超过 2 年前

> The InvalidValuesInEnumsFieldsFuzzer will send invalid values in enum fields. It expects a validation error in return. The GitHub API does not seem to reject invalid values, but rather convert them to a default value and respond successfully to the request. This is in contradiction with the OWASP recommendation around strong input validation and data type enforcing.Doing this is incredibly good practice for compatibility, because otherwise you can never add or remove enum values because older clients will break on the unknown values. I also fail to see how it violates the recommendation, invalid data doesn't enter the system.Imagine all webservers and browsers would need to be updated for every new HTTP header or status code is specified or web pages don't work anymore...

评论 #33805733 未加载

binarysneaker超过 2 年前

GitHub performs fuzzing as part of their testing, so I'm not surprised there aren't any significant findings. I am surprised this is on hackernews two years later though.

brap超过 2 年前

Would any of these errors be present if they used GraphQL instead of REST? Obviously the ones with headers can still happen, but it looks like everything else is related to schema enforcement

评论 #33807673 未加载

sigmonsays超过 2 年前

the results of the fuzzing is overall very meh, but CATS looks like an interesting tool.

8 条评论

londons_explore超过 2 年前

I think the real conclusion here is... No substantial security issues were discovered. There are a few things github could change to better follow security best practices to help avoid future bugs.

评论 #33802965 未加载

plebb0t超过 2 年前

评论 #33805816 未加载

评论 #33805056 未加载

londons_explore超过 2 年前

Doing this sort of thing to a live webservice is a good way to get a perma-ban...

评论 #33801377 未加载

aszen超过 2 年前

评论 #33807728 未加载

dtech超过 2 年前

评论 #33805733 未加载

binarysneaker超过 2 年前

GitHub performs fuzzing as part of their testing, so I'm not surprised there aren't any significant findings. I am surprised this is on hackernews two years later though.

brap超过 2 年前

Would any of these errors be present if they used GraphQL instead of REST? Obviously the ones with headers can still happen, but it looks like everything else is related to schema enforcement

评论 #33807673 未加载

sigmonsays超过 2 年前

the results of the fuzzing is overall very meh, but CATS looks like an interesting tool.

I've fuzzed a small part of the GitHub API (2020)

8 条评论

I've fuzzed a small part of the GitHub API (2020)

8 条评论