Today’s issue almost didn’t get written. The reason being I got lazy brain. Took all my training and practice to write the issue. Curious to know how I overcame this sudden bout of laziness and procrastination? Read on.
I am very clear that I want to send out this newsletter before 8 pm every Sunday.
Roughly this is what I do to make sure this gets done
Since the lines between home and work are blurred you may not realise it but you may be overworking yourself.
Some of the symptoms (not medical opinion) may include
Please Note — Our first public batch of this training will be at Troopers20
No matter where you are, you are probably interacting with applications and services hosted in the AWS Cloud. Not only the public infrastructure as a service (IaaS) cloud from Amazon is the most popular and used by the technical world, they keep adding new features year after year.
In our company every second application or product we end up doing security testing for is hosted in AWS. Over time we have realised that while most of the security…
If you attended the panel at nullcon last year, you know what a great session that was. If you are planning to be at nullcon again this year, you will be mighty pleased to know the session is definitely happening and we will share all the details here in this post.
Recently it came to our attention that there was a combined password dump which contained passwords cracked to plaintext.
The dump, said to be one of the largest, was 42 GB in size. That is a lot of usernames and passwords! Woah!
The username and password dump came conveniently sorted alphabetically and with simple scripts to query for email addresses. It also had scripts to count the total number of entries etc. On any decent laptop/virtual machine with an SSD, the query time is mere 4–5 seconds. But we wanted to do dig a bit deeper. …
If you are an audience of nullcon, you would have definitely heard of Hackers. You may have heard of many things about us, some true some maybe not.
So a bunch of us decided that it was time to meet you face to face in real life, so that
We are conducting our sold out nullcon Training to Bangalore on the 13th, 14th and 15th October 2016.
We have added an extra day, complete for how does one detect vulnerabilities. Imagine learning about how to detect over 40+ vulnerabilities in a day and then using that knowledge to play a realistic war game!
Learn how to detect issues, identify vulnerabilities and exploit them. Learn the tools to use, how to script the attacks and more.
Now with full day of detecting 40+ vulnerabilities including OWASP Top 10
The training is fully hands-on and you get to take back all…
Building websites is easy. Building insecure websites is easy. Building secure websites can be easy as well. But it requires one basic behaviour change that most of you will find dis-concerting. There are many many things to take care of while building applications but lets start with 10 that will give a head-start in securing your applications.