Web-Performance Blog
The HTTP Archive format, known as HAR, is a JSON-formatted archive file format used to log a web browser’s interactions with a website.
To save a HAR file in Chrome, open the Developer Console. The HAR file contains everything, including cookies and sessions, which can be considered secrets. Remember to be careful with whom you share this file. This can be useful if a website encounters an error condition. It can be a valuable way to debug rendering issues.
IP intelligence and looking up IP addresses has been a regular task for me for many years. Whether it’s debugging during attacks or monitoring crawler activity on websites, I have utilized various methods. I began using ipapi.co to look up IP addresses because it does not require an API key, making it convenient an it still allows for some bulk processing. This approach was ideal for the volume of lookups I performed in 2021. While this technique is still effective, exploring other options like locally hosted databases may be more appealing if you require a higher quota and performance.
Recently, I posted about Redis. This time it’s about Azure Service Bus. Also, the options for Azure Service Bus in the Azure Portal are improving, allowing you to do more and more.
Working on Azure, most application directly interact with Redis. However, for debugging or handling incidents, visibility into Redis and its storage can be beneficial. The Azure portal seems to be constantly adding more features in this area. If this is insufficient, a Redis Client can be beneficial. I personally like this client.
There is a high chance of a Distributed Denial of Service (DDoS) attack around and during the “Summit on Peace in Ukraine” conference at the Bürgenstock Switzerland on the upcoming weekend of June 15th and June 16th, 2024. Find a complete breakdown of technical details of what happened over the entire weekend in the article.
Attacks on Swiss web properties were seen during the World Economic Forum in January 2024, the visit of the Ukrainian President Wolodymyr Selenskyj to Switzerland in January 2024, and in June 2023 when the Ukrainian President Wolodymyr Selenskyj was speaking in front of the Swiss Parliament in the form of a remote conference.
Fast and customizable vulnerability scanner based on a simple YAML-based DSL.
I took my first steps with Nuclei. The plan was to verify if my Atlassian Confluence instance was vulnerable both before and after patching. Also, on June 7, 2024, a new PHP vulnerability emerged, and I wanted to use Nuclei to review the security posture of some PHP installations I manage.
I used to have a YubiKey, but it never fully caught on with me. Now, finally, I want to start using a YubiKey to reduce the risk of phishing attacks and strengthen my overall personal IT security.
A hardware security token never goes alone; always add two. One is for use, and the second is for backup.
I used to always reach for DSL-reports for speed testing.
But I ran into issues where testing didn’t always work, and there are so many advertisements that I’m fed up. A nice, currently ad-free experience is with Cloudflare.
The BLP_bbot/0.1 user agent is associated with Bloomberg Financial Market and is referred to as “BLP” within their own internal naming conventions. It’s likely used by Bloomberg for web crawling purposes, potentially related to financial data aggregation and analysis.
I recently had a lot of contact with ASNs and I was looking for a full list of ASNs. There is an official and public list from RIPE.
https://ftp.ripe.net/ripe/asnames/asn.txt
