TheServerSide

HTTP request methods explained

Community driven content discussing all aspects of software development from DevOps to design patterns. The 1.0 version of the Hypertext Transfer Protocol, issued way back in 1996, only defined three ...
theregister

'MadeYouReset' HTTP/2 flaw lets attackers DoS servers

Security researchers Gal Bar Nahum, Anat Bremler-Barr, and Yaniv Harel have published details of a "common design flaw" in implementations of the HyperText Transfer Protocol 2 (HTTP/2) allowing those ...
SecurityWeek

New HTTP Request Smuggling Attacks Impacted CDNs, Major Orgs, Millions of Websites

A desync attack method leveraging HTTP/1.1 vulnerabilities impacted many websites and earned researchers more than $200,000 in bug bounties. New variants of the HTTP request smuggling attack method ...
Hackaday

What Happened To WWW.?

Once upon a time, typing “www” at the start of a URL was as automatic as breathing. And yet, these days, most of us go straight to “hackaday.com” without bothering with those three letters that once ...
GitHub

HTTP server mocking and expectations library for Node.js

Nock can be used to test modules that perform HTTP requests in isolation. For instance, if a module performs HTTP requests to a CouchDB server or makes HTTP requests to the Amazon API, you can test ...
GitHub

nghttp2 - HTTP/2 C Library

This is an implementation of the Hypertext Transfer Protocol version 2 in C. The framing layer of HTTP/2 is implemented as a reusable C library. On top of that, we have implemented an HTTP/2 client, ...
Infosecurity-magazine.com

Attackers Increase Use of HTTP Clients for Account Takeovers

Cybercriminals have been observed increasingly leveraging legitimate HTTP client tools to execute account takeover (ATO) attacks on Microsoft 365 environments. Recent findings from Proofpoint reveal ...
The New York Times

The Tangled Tale of The Times’s URL

The Times wanted to go online in 1996 with nytimes.com. But the domain was already owned — by a Times reporter. By Megan DiTrolio Times Insider explains who we are and what we do and delivers ...
Cyber Defense Magazine

HTTP 1.1 Vs. HTTP 2: What Are the Differences?

According to this recent report by McKinsey, 87% of consumers say they won’t do business with your company if they have concerns about your security practices. So if you’re serious about protecting ...
InfoWorld

What is HTTP/3? The next-generation web protocol

HTTP/3 breaks from HTTP/2 by adopting the QUIC protocol over TCP. Here's a first look at the new standard and what it means for web developers. It’s no surprise that evolving the vast protocol ...
The Hacker News

New HTTP/2 Vulnerability Exposes Web Servers to DoS Attacks

New research has found that the CONTINUATION frame in the HTTP/2 protocol can be exploited to conduct denial-of-service (DoS) attacks. The technique has been codenamed HTTP/2 CONTINUATION Flood by ...