Subresource Integrity (SRI)

Description

Subresource Integrity (SRI) vulnerability.

Bussines Impact

If you use the site with a third-party DNS service and the DNS service is hacked or hijacked, it means that your site has also been hacked or hijacked.

Recommendation

To safely use Subresource Integrity make sure you add the Integrity attribute into the script tag with a base64 encoded cryptographic hash value.

<script src=”https://example.com/file.js” integrity=”sha256-R4/54asda4848as4sad1as86d4as2d1″></script>

Reference

https://developer.mozilla.org/en-US/docs/Web/Security/Subresource_Integrity

Exposing the GIT

Let’s start with defining the meaning of GIT. GIT – is an open-source system which we use as a tool to store data and information

Read More »

HAR Files

In this article, I’ll talk and explain about HAR Files, so if you don’t know what they are, or, what do we use them for,

Read More »

What is a CWE ?

Similar to the article written on CVEs, in this article we will answer the questions :What is CWE ? and, what is the difference between

Read More »