Tag: web

• How to Add Dropdowns on Input Fields with Bootstrap

  Bootstrap is so 2017, Tailwind sucks, CSS is the only way to style – I don’t like frontend because everyone is so angry all the time. Nevertheless, a proper UI is critical to just about any application, so I must make do with the tools that are available. I’ve traditionally used React because the ecosystem…

  joetats

  July 8, 2025

  javascript

  autocomplete, bootstrap, dropdown, dynamic, frontend, html, javascript, web

• Avoiding SQL Injection with Go

  

  There’s a good chance if you’ve worked with Go you’ve interacted with a database of some sort and also accepted user input. Injection attacks always make it to the OWASP Top 10 (although it’s finally been dropping) – particularly SQL injection. SQL has kind of wild access control when you look at standards today; the…

  joetats

  April 10, 2025

  go

  go, golang, injection, owasp, sql, web

• Avoiding Memory Issues During Docker-Vite-React Builds

  

  In one of my more frustrating recent evenings I had added a small feature to a react project which built and tested fine on my machine and in the CI pipeline, but refused to build on the VPS. The project would hang on the npm run build command and after 10 minutes or so (!)…

  joetats

  October 18, 2024

  javascript

  docker, frontend, javascript, memory, npm, troubleshooting, vite, web

• Adding Django-REST-Framework to Django (way after the fact)

  One of my first projects in my current role was to optimize a process that involved taking a hardware design and making predictions about it. We had some old Excel sheets that would keep track of old analyses but these didn’t really enforce any structure and lots of work had to be redone each time…

  joetats

  August 1, 2024

  python, tools

  api, backend, Django, django-rest-framework, DRF, python, react, web

• Time-Based Debouncing with Plotly Dash

  It’s been a while since I’ve written a post here! Ended up shifting jobs a couple months ago and have been pretty focused on a learning a new type of role. Part of the new gig is automating the collection and display of a variety of data and I’ve had the opportunity to start using…

  joetats

  July 11, 2023

  python

  dash, data, frontend, plotly, python, web

• TryHackMe: Overpass

  Overpass is an “Easy” rated machine on THM with the goal of getting a user and a root flag. Seems pretty straightforward, only guidance is that the theme is a student-created password manager. Unfortunately we’re taking a look at this a couple years after it was created – there was a THM subscription hidden on…

  joetats

  January 23, 2023

  ctf, tryhackme

  ctf, metasploit, pentesting, priv esc, security, ssh, web

• TryHackMe: Pickle Rick

  Who doesn’t love Rick and Morty? On this box our goal is to exploit a webserver and find 3 ingredients for Rick to turn back into a human. Once we start it up we should start our recon by looking through the web server. Recon Using BurpSuite and the BurpSuite browser, we can start poking…

  joetats

  January 22, 2023

  ctf, tryhackme

  ctf, linux, pentesting, web

• HTB: Templated

  This is a pretty quick challenge which stresses the importance of sanitizing user input – especially with server-side rendering. To start this, select the challenge on HTB and you’ll be provided with a link to a docker container that you can access outside the VPN. Initially the link just shows a little “under construction” page…

  joetats

  January 17, 2023

  ctf, htb

  ctf, pentesting, security, web

• TryHackMe: Basic Pentesting

  This should be a pretty straightforward box, the details provided note that this will involve brute forcing, hash cracking, service enumeration, and Linux Enumeration. Let’s get started with some recon! Recon Like usual, let’s hit the target with an nmap scan. My initial scan is as follows: This takes a little while, so after making…

  joetats

  January 16, 2023

  ctf, tryhackme

  ctf, pentesting, security, web