Pingiskok

@longlivedoma I think I'll get to this a bit later. Right now I'm working on another series that you should enjoy. But business logic is a veeeery broad topic, so I'll think about how to fit it into a series of articles.

Anything like this for Business logic?

@xer0c @tributaryso This might be one of the best compliments I could have received. Glad it helped you!

@tributaryso's payment verification just got even more secure. This article had a few gems. Published yesterday. Security improvements 🚢'ed today x.com/pingiskok/stat… This is how we use it in Tributary: @xeroc/accepting-recurring-solana-payments-in-react-without-losing-your-mind-652583e8c91d" target="_blank" rel="nofollow noopener">medium.com/@xeroc/accepti… #buildinpublic

@0a_yso I'd like to clarify that all the material is written from scratch. However, the information in it was gathered from public sources and my own experience.

@pingiskok What did you use as a source? Your own experience or other's research?

Every JWT writeup online covers 2–3 attacks and stops. I got tired of jumping between 40 blog posts, so I wrote the whole thing. All in one place. rmrf.tips/en #infosec #appsec #bugbounty #websec #jwt

@0a_yso Of course, 90% of it is based on other people's research. And yes, it was my mistake not to cite the sources in the articles from the start. I'm planning to fix this in the upcoming updates to the articles.

@RCristio93143 Thanks bro! Access control & business logic is a massive topic - hard to cover properly even in 20 posts, but I'll try to tackle it down the line. Right now I'm finishing another series that I think you'll really enjoy - stay tuned

@pingiskok Broo make some on access control issues and business logic