h4ckNinja's Blog

Latest — 09 Jan 2025

Should you hide version numbers?

In AppSec, it's not uncommon to come across a report recommending that the version number in response headers be hidden or that the version number at the bottom of a COTS installation gives away too much information. Information Disclosure (or Information Leakage, depending on who you ask) is

More issues

The Insider

ℹ️This story includes events from my career. I may have to intentionally leave out details to avoid identification. The Beginning It all started with account lockouts on Active Directory. At first, I didn't have to deal with it, my manager did. Once a day, sometimes twice, they

The time I fought off a hacker ... live

ℹ️This story includes events from my career. I may have to intentionally leave out details to avoid identification. You see it in TV shows and movies where someone is fighting a hacker. They go back and forth, turning each other's lights off, maybe trade witty banter as