#web-application — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #web-application, aggregated by home.social.
-
My experiment with #selfhosting a code forge using #Forgejo has come to an end. Even though it wasn't too expensive to rent a VPS, I still disliked having another form of rent to pay. I'd much rather be hosting something from my own hardware at home. In addition to this, my current use-case doesn't seem to justify the effort it takes to properly maintain the service.
I had a couple projects I was sharing on my website via this code forge, both of which used to be on #GitHub. I've realized they work better as static files/archives you can download directly. They're tiny and there's no need for a live web application to share them.
I did learn a lot by setting up the Forgejo instance, including how to use wildcard #SSL certificates and #nginx. I took copious notes, so I'll probably have a much smoother time of it if I try hosting another web application at some point.
For projects that are better served by a Forgejo instance, I've made a #Codeberg account:
#VPS #software #programming #WebDev #WebDevelopment #WebApplication
-
Не доверяй чужому VPN: поднимаем self-hosted AmneziaWG с веб-панелью
В медиаполе снова пошла знакомая волна предупреждений: пользоваться VPN и другими средствами обхода блокировок не только нежелательно, но еще и опасно. Мошенники крадут данные, учетные записи и деньги, а доверчивый пользователь, разумеется, остается крайним. Рациональное зерно в этом, конечно, есть. Случайные VPN-сервисы - особенно бесплатные, непрозрачные и обещающие «полную анонимность в один клик» - действительно могут оказаться сомнительным выбором. Когда весь ваш трафик идет через неизвестно чью инфраструктуру, вопрос доверия перестает быть теоретическим. Но дальше обычно начинается привычная подмена. Из тезиса «не стоит пользоваться чем попало» очень быстро пытаются перейти к тезису «не стоит пользоваться ничем вообще». И вот это уже больше похоже не на заботу о безопасности, а на очередную попытку объяснить, что ограниченный интернет - это и есть нормальный интернет. На практике все работает ровно наоборот. Чем больше ограничений, тем выше спрос на инструменты обхода. И если уж выбирать между случайным коммерческим VPN, бесплатным приложением с мутной моделью монетизации и собственным сервером, то self-hosted-вариант выглядит как минимум достойным внимания. Поэтому дальше речь пойдет не о том, почему VPN - это страшно, а о том, как сделать его своим: развернуть self-hosted AmneziaWG с помощью install-скрипта и дополнить его веб-интерфейсом для управления пользователями.
https://habr.com/ru/articles/1018548/
#vpnсервер #amneziawg #wiresock #selfhosted #wireguard #webapplication
-
In this latest article in our long-running series on #BurpSuite #Extension #Development, @apps3c illustrates how to extend the Active and Passive Scanner in your favorite #WebApplication #PenetrationTesting tool with Custom Scan Checks:
https://hnsecurity.it/blog/extending-burp-suite-for-fun-and-profit-the-montoya-way-part-9/
Check it out!
-
Build my first application in #go. https://github.com/IvoLimmen/notesmd it's a #Markdown #notes #webapplication and I am using it every day. Don't think a lot of Go developers think it's good but I am slowly getting the hang of it...
-
I've just released version 1.0.4 of the Spring Boot Extension for bld
#bld #buildsystem #buildtool #github #java #spring #springboot #webapplication
-
Two New Web Application Risk Categories Added to OWASP Top 10 https://www.securityweek.com/two-new-web-application-risk-categories-added-to-owasp-top-10/ #ApplicationSecurity #webapplication #vulnerability #OWASPTop10 #OWASP
-
Web Application Design: Principles, Best Practices, and Trends https://visualmodo.com/web-application-design-principles-best-practices-and-trends/ 📊🎨 📲 #WebApplication #Design #Practices #Trends
-
10 Best Secure Web Gateway Vendors In 2025 https://cybersecuritynews.com/best-secure-web-gateway/ #WebApplication #WebSecurity #websecurity #Top10
-
https://github.com/brotheralameen1/Discordforschool/security/advisories/GHSA-63xr-98vc-whx5
Published Security Advisory for OneTrust SDK V6.33.0 Vulnerable to Prototype Pollution causing DoS in the system by editing Prototype Value. Currently, submitted this to MITRE CVE to request publication of my CVE to the National Vulnerability Database and awaiting their response. You can click the link above to learn more about the exploit.
#exploit #javascript #prototype #pollution #ethical #ethicalhacking #penetration #testing #cybersecurity #informationsecurity #infosec #cybersec #bughunting #bugbounty #bugbountyhunting #bughunter #webapplication #webapplicationsecurity #security
-
XSS Cheat Sheet: A Comprehensive Guide
-
North Korean IT workers set their sights on European organizations https://www.helpnetsecurity.com/2025/04/02/north-korean-it-workers-target-europe/ #webapplication #webdevelopment #insiderthreat #blockchain #NorthKorea #Don'tmiss #datatheft #extortion #Hotstuff #News #CMS #EU #UK
-
Example web application with Rust using Rocket and as a frontend SvelteKit. Authentication/Authorization is done via OIDC:
-
In his newest blog post, Marco explains how to release and operate web applications with Git on Deploio. 📝 Various frameworks and tools attempt nowadays to standardize programming processes – web app development has changed over time. 🔀 But web application builds and deployments have also become more complex and require more and more configuration. ⚒️ You'll find the rest of the story and the whole blog post on our website: https://nine.ch/using-git-to-release-and-run-your-web-app-on-deploio/ 👈 #webapplication #deploy #git #blog #nine
-
Are Your Web Apps an Open Door for Hackers?
Imagine spending months perfecting your web app, only to find it leaking data like a sieve. Scary, right? That’s exactly what happens when common security flaws go unchecked.
In LMG Security’s latest blog, @tompohl shares jaw-dropping real-world web application security attack case studies from the field, including:
▪ Command Injection Jackpot – A hidden file upload flaw led to full server control.
▪ API Admin Takeover – An overlooked endpoint allowed attackers to create Super Admin accounts.
▪ Heap Dump Disaster – A debugging tool exposed Active Directory credentials and user tokens
.
Read the full blog to learn how hackers target web apps and how to lock them down: https://www.lmgsecurity.com/common-web-application-security-attacks-real-world-lessons-from-the-field/#Cybersecurity #Security #ITsecurity
#WebAppSecurity #APISecurity #PenTesting #CISO #WebApp #WebApplication #pentest #penetrationtesting #Infosec #DFIR -
10 Best Web Application Firewall (WAF) – 2025 https://cybersecuritynews.com/web-application-firewall/ #WebApplicationPentestingTools #webapplicationfirewall #CyberSecurityNews #cybersecuritynews #WebApplication #CyberSecurity #cybersecurity #WebSecurity #websecurity #Top10
-
#contentsecuritypolicy #csp an important additional line of defense for #webapplication to protect #security and #privacy of your user. You can add them to any web applications (even if you do not have the code!). More information: https://developer.mozilla.org/en-US/docs/Web/HTTP/CSP
Content security policy for #wordpress: https://jornfranke.codeberg.page/technology-tutorials/wordpress-csp/
Content security policy for your own #springboot and #angular application: https://codeberg.org/ZuInnoTe/spring-boot-angular-example
-
Building Your First Web Application with Yii Framework https://hackread.com/building-your-web-application-with-yii-framework/ #WebApplication #YiiFramework #Technology #Yii2
-
Explore 500 Million Years Of Climate Data Across The Changing Globe With Climatearchive.Org
--
https://jeangoldinginstitute.blogs.bristol.ac.uk/2021/08/09/climatearchive-org-540-million-years-of-climate-history-at-your-fingertips/ <-- shared technical article
--
https://climatearchive.org/ <-- shared technical resource
--
#GIS #spatial #mapping #climate #opensource #climatehistory #openscience #download #webmap #global #visualisation #climatemodel #climatechange #society #ecosystems #environmentalscience #integration #model #modeling #interdisciplinary #climatedynamics #webapplication #paleoclimate #opendata -
Apache OFBiz team patches critical RCE vulnerability (CVE-2024-45195) https://www.helpnetsecurity.com/2024/09/06/cve-2024-45195/ #webapplication #vulnerability #ApacheOFBiz #enterprise #opensource #Don'tmiss #Hotstuff #Rapid7 #News #CVE
-
#Development #Comparisons
Just use Postgres · Why not one of the many other databases? https://ilo.im/15ztnq_____
#Database #PostgreSQL #MySQL #SQLite #MSSQL #MongoDB #ElasticSearch #WebApplication #WebDev #Backend -
Управляем нашей лодкой прямо с веб-страницы на телефоне
Итак, мы будем делать автопилот для лодки, который будет содержать довольно простую механическую часть, а все вычисления будут производиться прямо в веб-приложении браузера. Короче, идем под кат, я все расскажу.
https://habr.com/ru/articles/828938/
#управление_лодкой #автопилот_яхты #diy #webapplication #web_bluetooth #ble #diy_или_сделай_сам #esp32 #автопилот
-
Is there any other #web #framework in any other #language which is mature like @django ? Maybe something in the #Java land.
-
Chinese APT40 group swifly leverages public PoC exploits https://www.helpnetsecurity.com/2024/07/09/apt40-poc-exploits/ #webapplication #Don'tmiss #Australia #Hotstuff #webshell #China #News #CISA #APT #PoC
-
Il prossimo mercoledì a "Delphi Day Italian Conference" terrò un seminario (di oltre 3 ore) dove affronteremo un viaggio illuminante nello sviluppo di applicazioni Web robuste e flessibili usando Vue.js, uno dei framework più diffusi e apprezzati per lo sviluppo frontend, accoppiandolo all'immediatezza e prestanza di un backend totalmente realizzato in Delphi.
👉🏻 Info: https://www.delphiday.it
#delphiday #vuejs #frontend #javascript #delphi #backend #development #programmazione #webapplication
