logo
episode-header-image
Jul 2020
20m 41s

Hasty Treat - Forms, Captchas, Honeypots...

Wes Bos & Scott Tolinski - Full Stack Javascript Web Developers
About this episode
In this Hasty Treat, Scott and Wes talk about forms, captchas, dealing with malicious users, and more! LogRocket - Sponsor LogRocket lets you replay what users do on your site, helping you reproduce bugs and fix issues faster. It’s an exception tracker, a session re-player and a performance monitor. Get 14 days free at logrocket.com/syntax. Show Notes 0 ... Show More
Up next
Yesterday
1012: Who Decides What Ships on the Web?
Scott and Wes sit down with Jake Archibald from Mozilla to unpack how web standards actually get made at Firefox. From browser features and developer feedback to the drama around the Prompt API. They discuss Interop 2026, the future of web APIs, and what it’s really like shaping ... Show More
1h 9m
Jun 8
1011: tmux + Terminal Maxxing with Ben Vinegar
Scott and Wes sit down with Ben Vinegar, former Syntax GM and founder of Modem.dev, to geek out over terminal-maxxing, from SSH-based development and tmux workflows to AI-powered coding agents. Ben also demos two of his open source tools: Hunk, a slick terminal code reviewer with ... Show More
1h 5m
Jun 3
1010: No one cares anymore?
On this episode, Scott and Wes dig into the messy reality of modern front-end work, from struggling to find skilled devs and navigating team chaos to questioning code quality, testing, and even whether AI is stealing the joy of programming. Show Notes 00:00 Welcome to Syntax 01:0 ... Show More
56m 6s
Recommended Episodes
Mar 2019
ELI5 Capcha - Why can't bots check 'I am not a robot' checkboxes?
A reCAPTCHA is a CAPTCHA-like system designed to establish that a computer user is human. So how does the reCAPTCHA checkbox i.e. the "I'm not a robot" checkbox actually work? Why can't bots just check 'I am not a robot' and fool the system?   ... We explain like i'm five!   Than ... Show More
6m 26s
Mar 2023
Mon. 03/20 – Robots All The Way Down
New bots to make video from text prompts. Fending off the bots from biting your style. Falling in love with the bots. In the streaming wars, the ad supported experiments are working, and pricing power is a thing. And the startup that says it’s about to introduce humanoid bots. Re ... Show More
17m 26s
Jul 2024
Episode 78: Less Writing, More Hacking - Reporting Efficiency Techniques
Episode 78: In this episode of Critical Thinking - Bug Bounty Podcast we’re talking about writing reports. We share some tips that we’ve learned, and discuss ways that AI can (and can’t) help with that process. We also talk about the benefit of using tools like Fabric, Loom, and ... Show More
1h 6m
Nov 2023
Episode 43: Caido - The Up-And-Coming HTTP Proxy
Episode 43: In this episode of Critical Thinking - Bug Bounty Podcast, we're joined by Emile from Caido, who shares his journey into the bug bounty and ethical hacking world. We kick off with a hilarious incident involving Joel, a child on an airplane, and an unfortunate cough. W ... Show More
1 h
Dec 2023
Episode 50: ­Mathias 'Fall in a well' Karlsson - Bug Bounty Prophet
Episode 50: In this episode of Critical Thinking - Bug Bounty Podcast, Justin catches up with hacking master Mathias Karlsson, and talks about burnout, collaboration, and the importance of specialization. Then we dive into the technical details of MXSS and XSLT, character encodin ... Show More
2h 24m
Nov 2023
Episode 44: URL Parsing & Auth Bypass Magic
Episode 44: In this episode of Critical Thinking - Bug Bounty Podcast, the topic is URL structure, and Justin and Joel break down the elements that make up a URL and some common tips and tricks surrounding them which allow for all sorts of bypasses. We also round out the episode ... Show More
1h 11m
Jun 2024
Episode 75: *Rerun* of The OG Bug Bounty King - Frans Rosen
Episode 75: In this episode of Critical Thinking - Bug Bounty Podcast, Justin and Joel are sick, So instead of a new full episode, we're going back 30 episodes to review.Follow us on twitter at: @ctbbpodcastWe're new to this podcasting thing, so feel free to send us any feedback ... Show More
2h 44m
Feb 2023
GoDaddy's compromise. Twitter disables SMS authentication for all but blue-checked users. Deutsche DDoS. Is Bing channeling Tay?
GoDaddy has discovered a compromise of its systems. Twitter disables SMS authentication for those not subscribed to Twitter Blue. Last week’s cyber incident impacting German airports was confirmed to be DDoS. The consequences of cyber irregular participation in cyber wars. Semico ... Show More
28m 2s
Feb 2024
Episode 58: Youssef Sammouda - Client-Side & ATO War Stories
Episode 58: In this episode of Critical Thinking - Bug Bounty Podcast we finally sit down with Youssef Samouda and grill him on his various techniques for finding and exploiting client-side bugs and postMessage vulnerabilities. He shares some crazy stories about race conditions, ... Show More
1h 54m
Listen to millions of songs and podcasts on Anghami