As developers increasingly embrace off-the-shelf software components into their apps and services, threat actors are abusing open-source rep...
Monday, April 20, 2020
Group Instant Messaging: Why Blaming Developers Is Not Fair But Enhancing The Protocols Would Be Appropriate
After presenting our work at Real World Crypto 2018 [ 1 ] and seeing the enormous press coverage, we want to get two things straight: 1. M...
Lockdoor-Framework: A PenTesting Framework With Cyber Security Resources
About Lockdoor-Framework Author: SofianeHamlaoui Github: SofianeHamlaoui Twitter: S0fianeHamlaoui Facebook: S0fianeHamlaoui Test...
CVE-2020-2655 JSSE Client Authentication Bypass
TLDR: If you are using TLS ClientAuthentication in Java 11 or newer you should patch NOW. There is a trivial bypass. During our joint resear...
Subscribe to:
Posts (Atom)