Terence Eden’s Blog

$3k Bug Bounty - Twitter's OAuth Mistakes

Bug Bounty hacking oauth security twitter · 4 comments · 450 words · Viewed ~16,093 times

---

Imagine the scenario. You're trying out some cool new Twitter app. It asks you to sign in via OAuth as per usual. You look through the permissions - phew - it doesn't want to access your Direct Messages. You authorise it - whereupon it promptly leaks to the world all your sexts, inappropriate jokes, and dank memes. Tragic! What's going on? Many years ago the official Twitter API keys were…

PodCast review: This Week - The Musical

podcasts · 100 words

---

Brand new podcasting from The Two LJs - being TV presenter LJ Rich and artist Leila Johnston. It's a happy mix of tech and snark. Rather than two dull blokes chattering away about which iPhone is fastest, it's two women discussing the week's tech news. And occasionally breaking into song. Take a listen It is a delightful twist on the usual podcast fare. Genuinely joyous, and…

Open Glasgow's Moral Maze

Open Data scotland · 700 words · Viewed ~239 times

---

Glasgow City Council has released a treasure-trove of open data. Nearly one-hundred datasets ranging from Live Traffic Information - to historic climate data. A fantastic boon for researches and open government enthusiasts. But there's a sting in the tail. The majority of the datasets are under the Open Government Licence (OGL). That's basically Creative Commons Attribution (CC-BY 4.0). …

Using the WordPress mShots Screenshot API

api Screenshots WordPress · 7 comments · 300 words · Viewed ~4,043 times

---

A few years ago, I wrote about Google's secret screenshot API - a slightly cumbersome way to take website screenshots for free. There's another service which you may find simpler to use - mShots from WordPress. Here's how it works: Take any website link: https://twitter.com/JennyVass/status/1067855777040338944 URL Encode it: …