Collaborate Disseminate
GitHub has announced that its application security testing tools are now more widely available for subscribers of Microsoft’s Azure DevOps Services. Enabling GitHub Advanced Security for Azure DevOps (Source: Microsoft) What is GitHub Advanced Se… Continue reading Microsoft, GitHub announce application security testing tools for Azure DevOps
GitHub is making push protection – a security feature designed to automatically prevent the leaking of secrets to repositories – free for owners of all public repositories. Previously, the feature was available only for private repositories… Continue reading Never leak secrets to your GitHub repositories again
There are a lot of situations where a research group may turn to an electron microscope to get information about whatever system they might be studying. Assessing the structure of …read more Continue reading Building an Electron Microscope For Research
After releasing the Open Source Vulnerabilities database (OSV.dev) in February, Google has launched the OSV-Scanner, a free command line vulnerability scanner that open source developers can use to check for vulnerabilities in their projects’ dep… Continue reading OSV-Scanner: A free vulnerability scanner for open-source software
Modern environments have become more dynamic and the need for equally progressive asset discovery techniques has intensified. The new Cybersecurity and Infrastructure Security Agency (CISA) Binding Operational Directive (BOD) 23-01 recognizes this fact… Continue reading Future-proofing asset and vulnerability intelligence in response to CISA’s BOD 23-01
Nmap is a widely used free and open-source network scanner. It’s used for network inventorying, port scanning, managing service upgrade schedules, monitoring host or service uptime, etc. It works on most operating systems: Linux, Windows, macOS, … Continue reading Nmap 7.93, the 25th anniversary edition, has been released
Engineers at Cornell University have developed a new wearable device that can monitor a person’s facial expressions through sonar and recreate them on a digital avatar. Removing cameras from the equation could alleviate privacy concerns.Continue Readin… Continue reading Wearable sonar tracks facial expressions using sound instead of cameras
Exposed version control repositories, leaked secrets in public code repositories, a subdomain vulnerable to takover, exposed Amazon S3 buckets, and Microsoft Exchange Server servers vulnerable to CVE-2021-42321 exploitation are the most common exploit … Continue reading The most common exploit paths enterprises leave open for attackers
As ransomware attacks continue to increase and cybercriminals are becoming more sophisticated, the federal government has implemented a more proactive approach when it comes to cybersecurity. As evidenced by its stated strategy to adopt a zero trust ar… Continue reading An offensive mindset is crucial for effective cyber defense
In this video for Help Net Security, Shani Dodge Reiner, Development Team Leader at Vicarius, explains how to identify vulnerabilities using the NMAP tool. NMAP is a very powerful and popular tool for network mapping. It can be used to learn about the … Continue reading How to identify vulnerabilities with NMAP