Victor Loux Bookmarks Tag: security

89 bookmarks tagged “security

saltpack - a modern crypto messaging format

saltpack.org/

DEFCON 19: Steal Everything, Kill Everyone, Cause Total Financial Ruin! (w speaker) - YouTube

youtube.com/watch

It’s time for a memory safety intervention

tonyarcieri.com/it-s-time-for-a-memory-safety-intervention

ascott1/ethical-web-dev: A series of short books on ethical web development

github.com/ascott1/ethical-web-dev
ethical-web-dev - A series of short books on ethical web development

LessPass

lesspass.com/
Stateless password manager

urlscan.io - Scan your website

urlscan.io/

forter/security-101-for-saas-startups: security tips for startups

github.com/forter/security-101-for-saas-startups

How To Safely Store A Password | codahale.com

codahale.com/how-to-safely-store-a-password/
CUDA/OpenCL implementations of password crackers can leverage the massive amount of parallelism available in GPUs, peaking at billions of candidate passwords a second. You can literally test all lowercase, alphabetic passwords which are ≤7 characters in less than 2 seconds. And you can now rent the hardware which makes this possible to the tune of less than $3/hour.

AutomatingOSINT.com - Learn How to Automate OSINT Collection

register.automatingosint.com/
This is the only course, literally - you can’t get it anywhere else, that teaches you how to write code to automatically extract and analyze data from the web and social media. Join students from around the world from law enforcement, journalism, information security and more.

How many secrets do you have?

github.com/frankmcsherry/blog/blob/master/posts/2017-02-08.md
This is a quick post, ruminating on the difference between two flavors of differential privacy in common use. I'm a fan of one, and the other weirds me out a bit. I think I have started to get a handle on why that is.

In Response to Guardian’s Irresponsible Reporting on WhatsApp: A Plea for Responsible and Contextualized Reporting on User Security | technosociology

technosociology.org/

TOR Node List

dan.me.uk/tornodes
Displays a full TOR node list no more than one hour old. Includes detailed information in script-readable format

Security: Redux: compromising Linux using... SNES Ricoh 5A22 processor opcodes?!

scarybeastsecurity.blogspot.co.uk/2016/12/redux-compromising-linux-using-snes.html

The limitations of Android N Encryption

blog.cryptographyengineering.com/2016/11/24/android-n-encryption/

Security Engineering - A Guide to Building Dependable Distributed Systems

cl.cam.ac.uk/~rja14/book.html

Crypto 101

crypto101.io/

gchq/BoilingFrogs: GCHQ's internal Boiling Frogs research paper on software development and organisational change in the face of disruption #boilingfrogs

github.com/gchq/BoilingFrogs
The pace of disruptive change is increasing, from the rise of cloud technology, social business, the Internet of Things and others. We feel it as much as other government departments and so we offer this internal research paper publicly, not to present policy or guidelines, but to stimulate debate.

CyberChef

gchq.github.io/CyberChef/
The Cyber Swiss Army Knife

NIST’s new password rules – what you need to know – Naked Security

nakedsecurity.sophos.com/2016/08/18/nists-new-password-rules-what-you-need-to-know/

What is Differential Privacy? – A Few Thoughts on Cryptographic Engineering

blog.cryptographyengineering.com/2016/06/15/what-is-differential-privacy/
Yesterday at the WWDC keynote, Apple announced a series of new security and privacy features, including one feature that's drawn a bit of attention -- and confusion. Specifically, Apple announced that they will be using a technique called "Differential Privacy" (henceforth: DP) to improve the privacy of their data collection practices. The reaction to this…