CipherSweet is a PHP library that provides searchable encryption for the most common cases a web developer is likely to encounter.

A WebSocket C2 Tool. Contribute to Arno0x/WSC2 development by creating an account on GitHub.

In the second part of his guide to AWS S3 security, hedgehog lab's Joe Keilty evaluates four methods for securely providing applications with access to your S3 resources.

0 votes and 0 comments so far on Reddit

Swiss Post believes that only a transparent and politically neutral e-voting solution can be successful in the long term. It is therefore publishing the source code of its solution.

A vulnerability in e-ticketing systems used by major airlines, malvertising campaign targeting premium publishers, abuse of a long-standing feature in Google Gmail, and more.

Parser for data dumps Collection #1 / Collection #2-5 - p3pperp0tts/leaks_parser

Swiss Post will be carrying out resilience testing, also known as a public intrusion test (PIT), on its e-voting system between 25 February and 24 March 2019. How does the intrusion test work and what happens if anything is found? The answers to the key questions.

In collaboration with Intel, Google Cloud is hosting a cybersecurity contest called the Confidential Computing Challenge. If you’re a developer, security researcher, or otherwise interested in developing safe apps, this is your chance to make an impact in…

Major security breach uncovered in temperature control system of hospital and supermarket chains including Marks & Spencer, Ocado, Way-on, and others.

Thread by @JohnLaTwC: "Story time. This one is about a feature in Windows called ASLR. It was 2005. We were working on Windows Vista. Most re the release with the maligned User Account Control feature. For us in Trustworthy Computing it was the first […]"

A network virtual appliance (NVA) is a virtual appliance primarily focused on network functions virtualization. A typical network virtual appliance involves various layers of four to seven function…

Quick Summary Hey guys today Ypuffy retired and this is my write-up. This box is a little different from the other boxes. It’s not windows or linux , it’s running openbsd which is a unix-like system. I really liked the privilege escalation in this box because…

Gorsair hacks its way into remote docker containers that expose their APIs. - Ullaakut/Gorsair

Personal blog of Christian Haschek

A step-by-step guide to learn how to hack WiFi passwords (WEP/ WPA2/ WPS) in plain-text using the Evil Twin attack method

Security analysis toolkit for proprietary car protocols - schutzwerk/CANalyzat0r

Lessons I’ve learned from software engineering are uniformly cynical: