Abusing insecure defaults: Forging GCM ciphertexts for the Node.js crypto module

Insecure defaults often lead to vulnerable implementations. This blog post explores such an insecure default in the Node.js crypto module, which breaks authenticity and affects many implementations in practice. Read more

Read full article

Similar

Node.js – v18.9.1

Node.js® is a JavaScript runtime built on Chrome's V8 JavaScript engine. (more…)

Node.js Server Starter with Hapi and TypeScript

In my previous post [/nodejs-server-with-koa-and-typescript/] I mentioned that... (more…)

Node.js Development with Docker and Docker Compose

Using Docker and Docker Compose to develop Node.js projects can be a good option, especially if working in a team. This article provides a walk-through a possible setup and discuss pros and cons of this approach... (more…)

TinyLD – Simple and Performant Language Detection Library for Node.js

Simple and Performant Language detection library for NodeJS - GitHub - komodojp/tinyld: Simple and Performant Language detection library for NodeJS... (more…)

Functionally test your login page with Node.js and WebdriverIO

Some Backstory Over the past year, I've been working on a set of online video tutorials for WebdriverIO. In it, I cover many details of WebdriverIO, including a multitude of commands and how WebdriverIO integrates with many systems out there. While I'm ha... (more…)

Latest News

Increased AI use linked to eroding critical thinking skills

Google announces Maps screenshot analysis, AI itineraries to help you plan trips

AI scrapers from Claude, etc. are incessantly hitting my poor little home server