Tag

security

Oldest Newest URL A-Z URL Z-A Title A-Z Title Z-A Random
dns recon & research -find & lookup dns records
https://dnsdumpster.com/

Free domain research tool to discover hosts related to a domain. Find visible hosts from the attackers perspective for Red and Blue Teams.

 
cyber dns import-20250527224135 security
Added 9 months ago
PKI for busy people
https://rehn.me/posts/pki-for-busy-people.html
 
certificates import-20250527224135 pki security
Added 9 months ago
All I Know About Certificates -- Certificate Authority | PixelsTech
https://www.pixelstech.net/article/1722045726-All-I-Know-About-Certificates----Certificate-Authority

CLIENTS,WEBSITE,CERTIFICATE,SSL CERTIFICATE.One of the crucial steps in the TLS handshake is for the server to prove its identity to the client. While there is plenty of content explaining the principles of the handshake, there's less informati

 
certificates import-20250527224135 security
Added 9 months ago
Traceeshark: Open-source plugin for Wireshark - Help Net Security
https://www.helpnetsecurity.com/2024/08/08/traceeshark-open-source-plugin-wireshark/

Traceeshark is a plugin for Wireshark that enables security practitioners to quickly investigate security incidents.

 
import-20250527224135 investigation kernel networking open source security
Added 9 months ago
Test Ad Block - Toolz
https://d3ward.github.io/toolz/adblock.html

Project Archived

 
adblock import-20250527224135 security
Added 9 months ago
SSH Bastion Host Best Practices
https://goteleport.com/blog/security-hardening-ssh-bastion-best-practices/
 
import-20250527224135 security ssh
Added 9 months ago
Bypassing airport security via SQL injection
https://ian.sh/tsa

We discovered a serious vulnerability in the Known Crewmember (KCM) and Cockpit Access Security System (CASS) programs used by the Transportation Security Administration.

 
cyber import-20250527224135 security vulnerability
Added 9 months ago
https://www.sqreen.io/checklists/saas-cto-security-checklist
https://www.sqreen.io/checklists/saas-cto-security-checklist

Production visibility and security for your web applications and APIs

 
import-20250527224135 security
Added 9 months ago
GitHub - drduh/YubiKey-Guide: Guide to using YubiKey for GnuPG and SSH
https://github.com/drduh/YubiKey-Guide

Community guide to using YubiKey for GnuPG and SSH - protect secrets with hardware crypto. - drduh/YubiKey-Guide

 
gnupg import-20250527224135 security ssh yubikey
Added 9 months ago
This Windows PowerShell Phish Has Scary Potential
https://krebsonsecurity.com/2024/09/this-windows-powershell-phish-has-scary-potential/

Many GitHub users this week received a novel phishing email warning of critical security holes in their code. Those who clicked the link for details were asked to distinguish themselves from bots by pressing a combination of keyboard keys that…

 
cyber import-20250527224135 phishing security
Added 9 months ago
Kusari
https://us.kusari.cloud/signup
 
actions github open source security
Added 1 month ago
Launch HN: Idemeum (YC S21) – Passwordless access to apps and infrastructur
https://news.ycombinator.com/item?id=33346183
 
identity import-20250527224135 security
Added 9 months ago
Scammers impersonating the ASD's ACSC | Cyber.gov.au
https://www.cyber.gov.au/about-us/view-all-content/alerts-and-advisories/email-scammers-impersonating-asds-acsc

Scammers are impersonating the ASD's ACSC sending out phishing emails to the public with the email content suggesting to download a malicious antivirus program.

 
cyber phishing security
Added 9 months ago
https://twitter.com/AWSSecurityInfo/status/1111371889333551104?s=19
https://twitter.com/AWSSecurityInfo/status/1111371889333551104?s=19
 
aws finance import-20250527224135 security
Added 9 months ago
The Top 20 Most Viewed AWS IAM Documentation Pages in 2017 | AWS Security B
https://aws.amazon.com/blogs/security/the-top-20-most-viewed-aws-iam-documentation-pages-in-2017/?sc_channel=sm&sc_campaign=AWS_Security&sc_publisher=TWITTER&sc_country=Security%20&%20Identity&sc_geo=GLOBAL&sc_outcome=awareness&trk=_TWITTER&sc_content=top20awsiamdocpagesin2017&sc_category=AWS_Identity_and_Access_Management&linkId=46619339

The following 20 pages were the most viewed AWS Identity and Access Management (IAM) documentation pages in 2017. I have included a brief description with each link to explain what each page covers. Use this list to see what other AWS customers have been viewing and perhaps to pique your own interest in a topic you’ve […]

 
amazon aws import-20250527224135 process security
Added 9 months ago
Opus 4.6 uncovers 500 zero-day flaws in open-source code
https://www.axios.com/2026/02/05/anthropic-claude-opus-46-software-hunting
 
ai ai agents hackernews llm security vulnerability
Added 1 month ago
I found 39 Algolia admin keys exposed across open source documentation sites
https://benzimmermann.dev/blog/algolia-docsearch-admin-keys

A systematic audit of Algolia DocSearch found 39 admin API keys exposed across projects like Home Assistant, KEDA, and vcluster.

 
data hackernews search security
Added 1 week ago
https://aws.amazon.com/blogs/security/how-to-verify-aws-kms-asymmetric-key-signatures-locally-with-openssl/?sc_channel=sm&sc_campaign=AWSSecurity_Services&sc_publisher=TWITTER&sc_country=Security&sc_geo=GLOBAL&sc_outcome=adoption&trk=AWSSecurity_Services_TWITTER&linkId=86699220
https://aws.amazon.com/blogs/security/how-to-verify-aws-kms-asymmetric-key-signatures-locally-with-openssl/?sc_channel=sm&sc_campaign=AWSSecurity_Services&sc_publisher=TWITTER&sc_country=Security&sc_geo=GLOBAL&sc_outcome=adoption&trk=AWSSecurity_Services_TWITTER&linkId=86699220

August 31, 2021: AWS KMS is replacing the term customer master key (CMK) with AWS KMS key and KMS key. The concept has not changed. To prevent breaking changes, AWS KMS is keeping some variations of this term. More info. In this post, I demonstrate a sample workflow for generating a digital signature within AWS […]

 
aws certificates import-20250527224135 key security
Added 9 months ago
Security best practices for authors of GitHub Actions - The GitHub Blog
https://github.blog/2023-11-16-security-best-practices-for-authors-of-github-actions/

Improve your GitHub Action’s security posture by securing your source repository, protecting your maintainers, and making it easy to report security incidents.

 
best practises cicd github import-20250527224135 security
Added 9 months ago
Security overview dashboards secret scanning metrics and enablement trends
https://github.blog/changelog/2024-07-19-security-overview-dashboards-secret-scanning-metrics-and-enablement-trends-reports-are-now-generally-available/

Today, we’re excited to announce the general availability of our new organization and enterprise-level security overview dashboards, alongside enhanced secret scanning metrics and the enablement trends reports. These features are…

 
application security import-20250527224135 scanning secrets security
Added 9 months ago
Google Online Security Blog: Announcing OSV-Scanner: Vulnerability Scanner
https://security.googleblog.com/2022/12/announcing-osv-scanner-vulnerability.html
 
import-20250527224135 open source scanning security
Added 9 months ago
Pretzel: email encryption and provider-supplied functions are compatible –
https://blog.acolyer.org/2017/10/10/pretzel-email-encryption-and-provider-supplied-functions-are-compatible/amp/
 
email encryption import-20250527224135 security
Added 9 months ago
https://isc.sans.edu/diary/23772
https://isc.sans.edu/diary/23772
 
anomaly detection import-20250527224135 security
Added 9 months ago
Recent improvements to Artifact Attestations - GitHub Changelog
https://github.blog/changelog/2025-02-18-recent-improvements-to-artifact-attestations/

We released a collection of improvements to Artifact Attestations to make the verification of attestations easier and more consistent. Artifact Attestations let you create provenance signatures, which provide an unforgeable…

 
github import-20250527224135 security supply chain
Added 9 months ago