Strange Proxy Application Behavior on iOS 13.5.1

Background: My buddy is a freelance journalist working on a story on one of the bigger software companies (a household name, starts with an A). Anyway, he asked me to take a look at his iPad because while he’s versed in InfoSec, this may be outside of his scope.

While examining the iPad I noticed that:

Entries seem to be selectively disappearing from the SSL enabled Charles iOS application.

Using the proxy I set up a block list of all Apple hostnames (Apple, iTunes, iCloud, iPhone.com) with wildcards. However, iMessage texts seem to be getting through with no issue, while last week text messages via iCloud were effectively blocked. It seems that the proxy behavior effectively changed.

Here is a video capture of an entry disappearing where you can see an entry disappear at the 13 second mark : https://youtu.be/E2loM_F0TVQ

Using another firewall, I also noticed that certain actions triggered https calls that don’t appear while Charles is enabled. Which suggests that the proxy is selectively printing certain connections and not others.

Even more bizarre, screen recordings and screenshots that I’ve taken on the iPad while observing non-normative network activity seem to have been mysteriously corrupted and unusable.

My question is a) whether anyone has observed this behavior with Charles before and b) how would I go about identifying a potential compromise on a device potentially facilitated/enabled by the manufacture? We’re considering this possibility because he may be a high value target because of his story and everything on his device is locked down extremely tight. I even factory reset the device, removed every stock application I could and installed no new apps except for the proxy and observed the same behavior.

Should an e-commerce application reserve products before attempting payment?

Look at it from the user’s side: would you like to order a product, go thru all the payment details page (including, for example, entering credit card data), having your card charged, then having the system come up and say, “Oops, we seem to have run out of those”? Then you’d have to refund or undo the transaction, which may incur fees for the retailer.

It is much better to put a hold on a product (reserve it) when it is ordered. This is like putting the product into your shopping cart in a brick and mortar store. In either case, if the cart is abandoned it will eventually be put back on the shelf.

If the order sits in the cart long enough, it would need to be refreshed. At that time you may notice that it is out of stock, and the user can be notified.

The additional complexity of the reservation system will make for a much better experience for your shoppers.

Design choice: Using kafka for application logging 1 topic vs multiple topics

I’m planning on having multiple applications switch to using kafka as the main place to push logs to asynchronously, where a downstream application will consume those logs and load them somewhere for storage. I’m debating whether I should have 1 topic (multiple partitions) where each application will push logs to or have multiple topics (1 for each application). Are there any design considerations that would potentially make one option more suitable than the other? I like the idea of using 1 topic for all applications with multiple partitions, that way I don’t have too many topics or have to create new topics when an application is added.

google – Angular:9 Is there any way we can deploy sub-applications of project and access in main application?

Hi all is there any way that we can deploy our angular project sub-applications separately and load those sub-folders into main application.

Sample structure

my-app
    -Projects:
           app1
           app2

here my-app is main project, app1 and app2 is sub-applications. i know how to build app1 and app2 ,how can i load those deployed sub-apps into main project.

Monitoring Javascript functions in android application

Is there an advanced technique i can monitor all JavaScript functions calls in runtime on android application(WebView), as well as view it`s results (like console.log()) ?

UK Visitor Visa Application

I am a student currently studying in Hungary and will like to visit a family friend in the UK for the summer holidays for a period of 2 weeks.

The documents I will be providing are:

I] My uncles Bank Statements
II] Permission letter from School
III] Bank statements and sponsorship letter from my uncle
IV] Translated Letters
V] Residence Permit and Passport

Is there anything I will need?

Windows 10: Open file directories with a custom application by default

Since everything I see is “explorer.exe”, I labelled different parts of it in the screenshots at the bottom, to make it easy to understand.

TL;DR

  1. Can I make my own application open directories by default when I click a directory in “1” or “2”?
  2. With the change for the question above, can I still make double-clicking a directory in a manually-opened “3” open in the same “3”, not with my application?

Longer version

There are some incontinences for me in “3”. So I am trying to write a (simple) my own file listing application in C#. Now, what I want is that when I double click a directory on the desktop or clicking things like “Downloads” or “Personal Folder” (in “1” or “2”), my own application gets invoked (with the directory path as an argument), not “3”.

I have searched the web and found a way to “replace the shell” HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindows NTCurrentVersionWinlogonShell, but that completely replaced everything and the Start Menu/Taskbar were gone. Not that I do not have complaints about the Start Menu/Taskbar, but recreating Start Menu/Taskbar would be daunting, so I only want to replace “3” (or, if possible, “1” also.)

I thought that I could change the “Open” command that I see when I right-click a directory, but replacing the value of HKEY_CLASSES_ROOTFoldershellopencommand(Default) from explorer.exe to another exe did not work. How can I do this?

But after making my application to open directories by default, if I manually open directories in “3” (because I cannot reproduce every feature of “3” and sometimes need to use it), when I double-click a directory in “3”, is it possible to make it open in the same “3”, not with my application?

enter image description here
enter image description here

sharepoint designer – SPDESIGN.EXE Application error The application was unable to start correctly (0xc000007b )

Sharepoint designer 2013 installed successfully on my PC without prompting any error.
After installation while opening it’s showing error.

SPDESIGN.EXE Application error The application was unable to start correctly (0xc000007b ).

I have preinstalled frameworks

Microsoft.net compact framework 2.0 SP2

Microsoft.net compact framework 3.5

Microsoft.net compact framework 4.5.1 Multi targeting pack

Microsoft.net compact framework 4.6.1 SDK

Microsoft.net compact framework 4.6.1 targeting pack

Do i need to install any prerequisite before SP designer installation?

any clue, please.

python – Weather Forecast Web Application

I’ve made a Python Flask app and I have some questions about the structure of the main module (equivalent of index.py).

Here is what it looks like:

from flask import Flask, render_template

import database as db    
import weather_forecast as wf
import os



app = Flask(__name__)


@app.route("/")
@app.route("/home")
def home():
    return render_template('home.html',  
                       sites=db.create_site_list_sqlite(),
                       api_key=os.environ.get('GOOGLE_MAPS_JS_API_KEY')) 
                      

@app.route("/contact")
def contact():
    return render_template('contact.html')

@app.route("/weather_forecast/<climbing_area>/<city_id>/<lat>/<lon>/<weather_site>")    
#creates url using climbing area name, city id, lat, lon, and location of weather site
def weather_forecast(climbing_area, city_id, lat, lon, weather_site):

    return render_template('weather_forecast.html', 
                       climbing_area=climbing_area, 
                       city_id=city_id, 
                       daily_forecast=wf.format_daily_forecast(city_id), 
                       extended_forecast=wf.format_extended_forecast(city_id), 
                       historical_forecast=wf.get_historical_weather(lat, lon),
                       dates=wf.get_date_range(),
                       lat=lat,
                       lon=lon,
                       weather_site=weather_site,
                       sites=db.create_site_list_sqlite(),
                       api_key=os.environ.get('GOOGLE_MAPS_JS_API_KEY'),
                       image_url=wf.image_choice(lat, lon, city_id))





if __name__ == '__main__':
    app.run(debug=True)

I have three pages in my application, home, contact, and a dynamically created weather_forecast url.

Basically, when the home() function runs and renders the home page template, it runs this line: sites=db.create_site_list_sqlite()
The create_site_list_sqlite() function returns a bunch of data from an SQLite database, which is used to populate some a href hyperlinks. When a user clicks on one of those links, it goes to a weather forecast page, created by the def weather_forecast() route. That same data is then used to populate the URL in the proceeding weather forecast page.

My reason for doing this is, it was the best way I could figure out to run the create_site_list_sqlite() function. I could have populated the weather_forecast url by re-running that function but it seemed redundant.

Is this good practice to run the create_site_list_sqlite() function (or any others) as few times as possible?

Also, because I needed several pieces of data from what that function returns (climbing_area, city_id, lat, lon, and weather_site), the url for a weather forecast page is rather long. I personally think its fine but is there some reason to tighten this up if possible, just as an example, here is what one of the weather forecast page URLs looks like:

http://localhost:5000/weather_forecast/Ibex/5538080/38.881/-113.461/Delta

Thank you for any input.

web application – Cross-Site Request Forgery from another origin

I’m trying to solve one of the challange of owasp juice shop. After some attempts, I started looking for a solution (this) and it’s exactly what I did, but it doesn’t work.

I’m running on a local docker the app (tried also online, but same problem).

On the console I get

Uncaught DOMException: Permission denied to access property “document” on cross-origin object

and it’s ok since that’s what I’m expecting to see, but when I go in the user profile the username didn’t change.
In the network panel of the console I can see the packet being send (for the SOP I can’t see the response), so I don’t know what the problem can be.

What I’m doing wrong?Is my understanding of the attack wrong or is just a problem with the implementation of the webapp?