all paths lead to clouds. Contribute to ovotech/gitoops development by creating an account on GitHub.

Human readable timestamps

TLS.support is a free diagnostic tool and REST API for testing browser and client TLS version and cipher support. The service also checks browsers and clients for common TLS-related issues and misconfigurations.

Fake Protocol Server. Contribute to fofapro/fapro development by creating an account on GitHub.

Cloud-native applications have evolved into a standardized architecture consisting of multiple loosely coupled components called microservices (implemented as containers), supported by code for providing application services called service mesh. Both of these…

Fake Protocol Server. Contribute to fofapro/fapro development by creating an account on GitHub.

Crucial's Ballistix MOD Utility v.<= 2.0.2.5 is affected by multiple Privilege Escalation (LPE) vulnerabilities in the MODAPI.sys driver.

In this post, I’ll exploit a use-after-free (CVE-2021-30528) in the Chrome browser process that I reported to escape the Chrome sandbox. This is a fairly interesting bug that shows some of the subtleties involved in the interactions between C++ and Java in…

The vast majority of websites now support encrypted connections over HTTPS. This prevents eavesdroppers from monitoring or tampering with people’s web activity and is great for privacy. However, HTTPS is optional, and all browsers still support plain unsecured…

Network, recon and offensive-security tool for Linux systems. - GitHub - medpaf/hawk: Network, recon and offensive-security tool for Linux systems.

This version contains few improvements and features:
First, the network map had upgraded by adding additional fields that enables to get insights about domain users and the amount of data transferr...

Posted in r/netsec by u/vesvault • 1 point and 0 comments

Determining the overall security posture of consumer electronics is an exceedingly hard task. In this post, we analyze four 'budget' devices.

WebGoat is a deliberately insecure application. Contribute to WebGoat/WebGoat development by creating an account on GitHub.

Drone pentesting framework console. Contribute to dhondta/dronesploit development by creating an account on GitHub.

Twitter: @s4tan Download: GitHub Documentation: https://github.com/enkomio/AlanFramework/tree/main/doc I just released version 4...

Not sure about the winner in the OIDC vs OAuth2 encounter? We’ve got you covered with this detailed authentication comparison.

In AppSec, most Security controls are implemented by folks outside the Security team. You cannot improve your AppSec posture, without "selling" the virtue of AppSec to your stakeholders.