valorin

@valorin@infosec.exchange

Friendly Hacker | Speaker | PHP & Laravel Security Specialist 🕵️
I spend my time doing security audits of Laravel apps and writing tips and articles at https://securinglaravel.com. 🤓
#searchable

This profile is from a federated server and may be incomplete. Browse more on the original instance.

valorin, to random

Tried Threads. I hate it. It won't show me the accounts I follow, just random posts that are popular? Horrible experience.

valorin,

@michael yeah, I agree, unfortunately.
It's also got momentum, no waiting lists, and EMs recent fails we're perfectly timed. (I think Threads took advantage and launched early).
So it's winning easily right now

chris, to random

Hey @valorin — does a mention from here to @valorinsrc do anything? Doesn’t seem like I can follow threads accounts from mastodon (yet?)

valorin,

@chris they've haven't enabled the Fediverse support yet. I saw something that said it wasn't ready and they want to make sure it's fully working before they turn it on.

valorin,

@chris Yeah, agreed. It will be very interesting.

valorin, to Laravel

Today's task: Get my talk ready for Laracon US!
Refreshing my Laracon EU talk, and hoping to add a new something in there, although I'm not sure what yet. 🤔

If you're coming to Laracon US, it's gonna be fun! 😁

valorin,

@bfaulkner That's why I speak. 😁
AU I can do on my own, but EU and US were only possible because they flew me there.

valorin,

@bfaulkner Ah, good point.
AU is still pending selection, so fingers crossed you're selected, that sounds like a great talk. 🤞

valorin, to random

I've just realised I said I was going to migrate my Fedi account this week, but haven't yet. Time to start getting ready, I guess...
Are there any good posts/threads around that cover the migration process, with any potential issues I could encounter?

I want to be as prepared as possible.

valorin,

@Anya_Adora Awesome, thanks! 👍

valorin,

@BradRubenstein Awesome, thanks!
Moving to standard Mastodon over on phpc.social.

I just requested a full export, so that bit is covered. 🤞

valorin,

@BradRubenstein Ah, interesting. I'll have to check that!

valorin, to Laravel

Security Tip : Resource Controllers and resource authorisation are awesome, but be careful if you use custom controller actions as well, as they'll bypass the authorisation! 😲🔓
So, naturally, I used this to download a client's database! 😈🥷
https://securinglaravel.com/p/security-tip-watch-out-for-resource

valorin, to Laravel

Security Tip : Resource Controllers and resource authorisation are awesome, but be careful if you use custom controller actions as well, as they'll bypass the authorisation! 😲🔓
So, naturally, I used this to download a client's database! 😈🥷
https://securinglaravel.com/p/security-tip-watch-out-for-resource

valorin, to random

The new AI Assistant in PhpStorm is pretty nifty. 🥷

valorin, to Laravel

Introducing Laravel Security Reviews! 🔒
Worried about app security but a full audit is outside your budget? I'm trialling a new reviews service -> get a quick check for vulnerabilities & misconfigurations that you can easily miss!
https://valsec.au/reviews/

valorin,

@emd Awesome! 😁

valorin, to random

Wordle 745 1/6

🟩🟩🟩🟩🟩

My starting word finally hit. 😎

valorin,

@Lironah haha, I did that with my original word. I hadn't checked for this one though.

valorin, to random

Alright, I think I'm going to finally migrate over to phpc.social this week. I love it here on infosec.exchange, but with Twitter falling further I think I need to hang out in the PHP community more.

Or do I dare another poll? 🤔😈

I keep getting to this point and second guessing myself... But I think I just need to do it.

valorin,

@jerry Yeah, I keep telling myself that. I can always move back if I want to and it's not as if I'll lose any followers/ings in the process. 🙂

Yay for overthinking stuff... 🤣

valorin,

@radmen It's about discovery for me. If I'm in the primary PHP instance, folks looking for other PHP/Laravel accounts are more likely to find my account and see my posts in the Local timeline.

valorin, to php

Ok, Security Tip is locked and ready to go out in 2 days. This week I'm covering a vulnerability I discovered in a recent audit that lead to complete PII exposure... 😱
Super simple to find and exploit, due to a single line overlooked...
https://securinglaravel.com

valorin, to php

Just sat down to write my Security Tip for this week and realised this one is Security Tip ! 😲 🎂

To celebrate, I'll sneak a special 50% off discount code into the email somewhere, valid for 24 hours only.
Sign up so you don't miss it: https://securinglaravel.com

video/mp4

valorin, to php

Just sat down to write my Security Tip for this week and realised this one is Security Tip ! 😲 🎂

To celebrate, I'll sneak a special 50% off discount code into the email somewhere, valid for 24 hours only.
Sign up so you don't miss it: https://securinglaravel.com

horuskol, to Laravel
@horuskol@phpc.social avatar

Guess I'm going to Sydney in a few months

valorin,

@horuskol Thanks for the reminder, I need to book mine!

  • All
  • Subscribed
  • Moderated
  • Favorites
  • tester
  • thenastyranch
  • magazineikmin
  • InstantRegret
  • tacticalgear
  • ethstaker
  • rosin
  • Youngstown
  • slotface
  • khanakhh
  • everett
  • kavyap
  • Durango
  • DreamBathrooms
  • megavids
  • ngwrru68w68
  • normalnudes
  • cisconetworking
  • Leos
  • love
  • cubers
  • osvaldo12
  • mdbf
  • anitta
  • provamag3
  • modclub
  • GTA5RPClips
  • JUstTest
  • All magazines
    •