Sam Sanoop

icon indicating a website link https://snoopysecurity.github.io/ icon indicating an email [email protected]

icon location Sam S

Results 16 comments of Sam Sanoop

Not working on AlmaLinux 9 at all

Hi, can you paste me the errors for further troubleshooting? thanks

Detect unsafe symlinks to prevent arbitrary file read/write during archive extraction

Hi! I believe the opened issue relates to `decompress` and was fixed a while back `https://github.com/kevva/decompress/issues/71`. I don't believe yauzl itself is vulnerable. I tried to reproduce using the above...

Burpsuite Extensions Recommendation

Hi @flamecopper i am not familiar with any extension for that, if you can't find anything from the references in this repo, most likely you'll have to build something yourself

docker-compose up

Hi @ddol31721 sorry for the late reply, this was fixed with commit https://github.com/snoopysecurity/dvws-node/commit/5408b14aab51af3a6d6698e8117f26d2ce6bb37b, if you clone the latest version of dvws-node and try docker-compose up -d, you shouldn't see any...

Missing OpenAPI specification

Hi, currently openAPI is not supported, only swagger https://github.com/snoopysecurity/dvws-node/wiki/Hidden-API-Functionality-Exposure i ll look to add it in the coming months

User authentication does not work

Hi, are these just the client side pages such as http://dvws.local/upload.html, http://dvws.local/notes.html etc? these pages can be viewed unauthenticated but the data for this pages are coming from ` /api`,...