Collaborate Disseminate
What items should be considered to create a browser that prevents all access to stored credentials by a malicious process? Hardware attacks being out of scope.
Are there public projects addressing this?
In an attempt to answer this myself,… Continue reading Is it possible to protect browser credentials from malicious processes?
Does hardening with SECCOMP a binary running inside a Docker container brings extra security? I can find many articles/papers about hardening the container itself but very few things about hardening binaries inside the container.
SECCOMP w… Continue reading SECCOMP inside a docker container adds an extra layer of security?
I’m interested in using GNU/Linux for different reasons. Partly for freedom, privacy, and security. But also to force myself to learn Linux. One issue I’ve found is that desktop Linux seems to have fairly poor security by default which is … Continue reading How should GNU/Linux noobs harden their dekstop OS?
tldr
How can I define a SELinux policy, that limits filesystem access of portable Tor Browser to its installation directory, say /home/user/.local/opt/tor-browser_en-US?
How might Tor Browser be hardened even further (X11 Window system, To… Continue reading How to harden portable Tor Browser installation (SELinux, sandbox)?
I am trying to find the configuration settings for this hardening on Windows 2019:
Block IIS sites configuration change from the IIS GUI, even for administrators.
The sites web.config change should be possible using a text editor.
I hav… Continue reading Block IIS GUI sites configuration change for hardening
Recently wordpress site on centos 7 server is hacked and WSO shell was uploaded.
Ive checked other sites and nothing was changed, Im using centos web panel and the root password also was not changed.
I had also modsecurity on my nginx- fir… Continue reading How to recover a hacked site with WSO Shell [duplicate]
I would like to know how I can know which is the safest compilation line, that is:
Having several compilation lines in, for example, GCC, how do I know which one is more secure? Hardening would be a good solution? What do you recommend?
Do… Continue reading How do I compare the safety of a compiled program with optimization flag?
Problem:
The hiring department occasionally sends me Word documents asking to clear the file as "safe" to open and review for purposes like resumes etc.; they can come from anywhere and are often unsolicited job applications.
Bas… Continue reading How can I improve my sheep dipping process?
I’m trying to secure a Linux machine so that a pentester will not be able to exploit the machine in any way, shape, or form. The laptop will eventually host many services.
I know that there is no one answer to securing a machine or network… Continue reading Secure a machine for pentesters [closed]
This is a very newbie question, but I would just like to make sure that I’m not missing anything: If I connect via VNC protocol to my various servers etc. inside my own LAN (home network), then should I consider hardening my VNC in any way… Continue reading Does VNC need hardening when inside LAN (home network)?