Eric Rafaloff My personal blog on software development and security
My personal blog on software development and security. From YAML Deserialization to RCE in Ruby on Rails Applications. If defined. If an object of a particular class were to be cleverly serialized with a particular set of instance variables then maybe, just maybe, a callback made on deserialization will end up executing dangerous code. This is why it is unsafe to pass user input to YAML. Of a payload he and several others wrote. This was especially interesting at the time because of CVE-2013-0156, wh.
OVERVIEW
The domain ericrafaloff.com presently has an average traffic classification of zero (the lower the more users). We have parsed two pages within the web site ericrafaloff.com and found three websites associating themselves with ericrafaloff.com. There is one contacts and locations for ericrafaloff.com to help you reach them. The domain ericrafaloff.com has been online for six hundred and fifty-five weeks, twenty days, fifteen hours, and twenty-eight minutes.
Pages Parsed
2Links to this site
3Contacts
1Addresses
1Online Since
Dec 2011ERICRAFALOFF.COM TRAFFIC
The domain ericrafaloff.com is seeing variant levels of traffic throughout the the year.
Date Range
1 week
1 month
3 months
This Year
Last Year
All time
Date Range
All time
This Year
Last Year
Date Range
All time
This Year
Last Year
Last Month
ERICRAFALOFF.COM HISTORY
The domain ericrafaloff.com was first documented on December 13, 2011. This domain was last updated on the date of December 05, 2013. It will go back on the market on December 12, 2014. It is now six hundred and fifty-five weeks, twenty days, fifteen hours, and twenty-eight minutes young.
REGISTERED
December
2011
UPDATED
December
2013
EXPIRED
December
2014
AGE
12
YEARS
6
MONTHS
20
DAYS
LINKS TO ERICRAFALOFF.COM
WHAT DOES ERICRAFALOFF.COM LOOK LIKE?
CONTACTS
Eric Rafaloff
34-16 41st St. Apt. 2C
Long Island City, New York, 11101
US
ERICRAFALOFF.COM SERVER
We revealed that a lone root page on ericrafaloff.com took one thousand one hundred and thirteen milliseconds to come up. We detected a SSL certificate, so I consider this site secure.
Load time
1.113 sec
SSL
SECURE
IP
192.34.59.184
NAME SERVERS
a.dns.gandi.net
b.dns.gandi.net
c.dns.gandi.net
WEBSITE ICON
SERVER SOFTWARE
We discovered that ericrafaloff.com is employing the Apache/2.4.7 (Ubuntu) operating system.SITE TITLE
Eric Rafaloff My personal blog on software development and securityDESCRIPTION
My personal blog on software development and security. From YAML Deserialization to RCE in Ruby on Rails Applications. If defined. If an object of a particular class were to be cleverly serialized with a particular set of instance variables then maybe, just maybe, a callback made on deserialization will end up executing dangerous code. This is why it is unsafe to pass user input to YAML. Of a payload he and several others wrote. This was especially interesting at the time because of CVE-2013-0156, wh.PARSED CONTENT
The domain has the following in the web page, "My personal blog on software development and security." I observed that the web site also stated " From YAML Deserialization to RCE in Ruby on Rails Applications." They also stated " If an object of a particular class were to be cleverly serialized with a particular set of instance variables then maybe, just maybe, a callback made on deserialization will end up executing dangerous code. This is why it is unsafe to pass user input to YAML. Of a payload he and several others wrote. This was especially interesting at the time because of CVE-2013-0156, wh."SEE MORE BUSINESSES
Protected Blog Log in
This site is marked private by its owner. If you already have both of these, great! Larr; Back to WordPress.
Rock Keyboardist Eric Ragnos Homepage
Eric Ragno is a keyboard player based in Los Angeles. Known in rock circles as the go-to guy, he has appeared o. He has performed across the U. Eric is currently on tour with legendary rockers The Babys.
Home - San Francisco real estate
San Francisco, CA 94114. Designed by the Blue Chair Studio.