home.social

#zipbomb β€” Public Fediverse posts

Live and recent posts from across the Fediverse tagged #zipbomb, aggregated by home.social.

  1. Ok I can confirm that gzip bombs work great!
    I almost crashed my PC Firefox testing my own bomb.

    I got inspiration from @lord 's article: lord.re/en/posts/139-gzip-bomb for the bomb
    and from @robin 's article icewind.nl/entry/nixos-add-ngi
    To automate adding the bomb by default to every virtual host I have (with NixOS).
    You can find the result here: framagit.org/ppom/nixos/-/comm

    #nixos #nginx #botfighting #sysadmin #zipbomb

  2. A valid HTML zip bomb, ache.one/notes/html_zip_bomb by @ache

    The article shows how to create an HTML zip bomb for AI crawlers not respecting the `robots.txt` file.

    A zip bomb is a huge file (like 10Gib), that once compressed, has a reasonable size like 10Mib. An AI crawler will uncompressed it and will see all its memory being consumed, leading to a possible crash.

    That’s an effective way to counter-attack disrespectful AI crawlers.

    #html #ZipBomb #ai

  3. A valid bomb

    The initial problem is the aggressiveness of web that don't respect "robots.txt". The first idea that comes to mind is IP . However, web crawlers have circumvented this restriction by using individual IPs via specialized .

    Another solution is therefore to exhaust the resources of the harvesters. With a , we attempt to their .

    πŸ’­ ache.one/notes/html_zip_bomb

  4. Sentient Beings Welcome!

    Others please read this carefully.
    Any attempt by bots, automated accounts and AI to follow or otherwise scrape this account despite #nobot #noai hashtag will be answered by me accordingly and then do not say you have not been warned ..
    I work for sentient beings and not for machines of capitalists. Stay away!

    #fediverse #mastodon #noai #nobot #zipbomb

  5. Hey does anyone know if there's still a working zip bomb style exploit that can be deployed on a static site/JS (or as a asset/resource)? Specifically to target web scrapers and AI bullshit? The second any server goes online now it's immediately bombarded by stupid numbers of requests.

    #hacking #aislop #crawlers #webscraping #webcrawler #robots #zipbomb #zipbombing #exploit #robotstxt #server #scraper

  6. Hey does anyone know if there's still a working zip bomb style exploit that can be deployed on a static site/JS (or as a asset/resource)? Specifically to target web scrapers and AI bullshit? The second any server goes online now it's immediately bombarded by stupid numbers of requests.

    #hacking #aislop #crawlers #webscraping #webcrawler #robots #zipbomb #zipbombing #exploit #robotstxt #server #scraper

  7. Hey does anyone know if there's still a working zip bomb style exploit that can be deployed on a static site/JS (or as a asset/resource)? Specifically to target web scrapers and AI bullshit? The second any server goes online now it's immediately bombarded by stupid numbers of requests.

    #hacking #aislop #crawlers #webscraping #webcrawler #robots #zipbomb #zipbombing #exploit #robotstxt #server #scraper

  8. Hey does anyone know if there's still a working zip bomb style exploit that can be deployed on a static site/JS (or as a asset/resource)? Specifically to target web scrapers and AI bullshit? The second any server goes online now it's immediately bombarded by stupid numbers of requests.

    #hacking #aislop #crawlers #webscraping #webcrawler #robots #zipbomb #zipbombing #exploit #robotstxt #server #scraper

  9. #SΓ©curitΓ© #ZipBomb : Γ‡a y est, quelqu'un a rΓ©ussi Γ  compresser NodeJS :troll:

    Β« Une fois dΓ©compressΓ©, ce fichier Zip de 46 Mo atteint… 4500 To Β» sur 01net.com/actualites/une-fois-