all InfoSec news
Fighting API Bots with Cloudflare's Invisible Turnstile
Aug. 21, 2023, 8:45 a.m. | Troy Hunt
Troy Hunt's Blog www.troyhunt.com
There's a "hidden" API on HIBP. Well, it's not "hidden" insofar as it's easily discoverable if you watch the network traffic from the client, but it's not meant to be called directly, rather only via the web app.
api bots client cloudflare demo device devices device trust fighting fleet have i been pwned hidden kolide network network traffic okta sponsored traffic trust turnstile unpatched watch
More from www.troyhunt.com / Troy Hunt's Blog
Inside the Massive Alleged AT&T Data Breach
1 month, 1 week ago |
www.troyhunt.com
Welcoming the Liechtenstein Government to Have I Been Pwned
1 month, 2 weeks ago |
www.troyhunt.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Application Security Engineer - Enterprise Engineering
@ Meta | Bellevue, WA | Seattle, WA | New York City | Fremont, CA
Security Engineer
@ Retool | San Francisco, CA
Senior Product Security Analyst
@ Boeing | USA - Seattle, WA
Junior Governance, Risk and Compliance (GRC) and Operations Support Analyst
@ McKenzie Intelligence Services | United Kingdom - Remote
GRC Integrity Program Manager
@ Meta | Bellevue, WA | Menlo Park, CA | Washington, DC | New York City