Stoeps' Links
Tag cloud
Picture wall
Daily
RSS Feed
  • RSS Feed
  • ATOM Feed
  • Daily Feed
Filters

Links per page

  • 20 links
  • 50 links
  • 100 links

Display

Filter untagged links
page 1 / 2
35 results tagged security  ✕
OWASP ZAP https://www.zaproxy.org/blog/2020-12-21-zap-2-10-0-the-10-year-anniversary-release/
Tue 22 Dec 2020 06:52:42 AM CET wallabag
thumbnail

ZAP 2.10.0 Anniversary Release

pentesting security
Bug Bytes #94 - Breaking Symfony apps, Why Cyber Security is so hard to learn & how best to approach it - Intigriti https://blog.intigriti.com/2020/10/28/bug-bytes-94-breaking-symfony-apps-why-cyber-security-is-so-hard-to-learn-how-best-to-approach-it/
Sun 01 Nov 2020 09:41:47 PM CET wallabag
thumbnail

Again a great collection of things worth reading all around bug bounty and pentesting.

linkdump pentesting security
Awesome Android Security - A Curated List Of Android Security Materials And Resources For Pentesters And Bug Hunters https://www.kitploit.com/2020/10/awesome-android-security-curated-list.html?m=1
Thu 29 Oct 2020 05:49:37 AM CET wallabag
thumbnail

A curated list of Android Security materials and resources For Pentesters and Bug Hunters.

android security
Exploiting CORS. With a real-world example: | by Gupta Bless https://gupta-bless.medium.com/exploiting-cors-64702948d676
Mon 26 Oct 2020 05:34:07 AM CET wallabag
thumbnail

When we browse any application that application server fetch data such as images, web pages from different locations on the same server or maybe from a different server on the internet. So to make…

cors pentesting security
Dockerfile Security Best Practices - Cloudberry Engineering https://cloudberry.engineering/article/dockerfile-security-best-practices/
Sat 17 Oct 2020 07:14:37 AM CEST wallabag

Container security is a broad problem space and there are many low hanging fruits one can harvest to mitigate risks. A good starting point is to follow some rules when writing Dockerfiles.

docker linkdump security
KeyStore Explorer https://keystore-explorer.org/
Mon 05 Oct 2020 11:08:16 AM CEST wallabag

KeyStore Explorer is an open source GUI replacement for the Java command-line utilities keytool and jarsigner. KeyStore Explorer presents their functionality, and more, via an intuitive graphical user interface.

linkdump security ssl tools
Bug Bytes #90 - The impossible XSS, Burp Pro tips & A millionaire on bug bounty and meditation - Intigriti https://blog.intigriti.com/2020/09/30/bug-bytes-90-the-impossible-xss-burp-pro-tips-a-millionaire-on-bug-bounty-and-meditation/
Thu 01 Oct 2020 06:05:19 AM CEST wallabag
thumbnail

Bug Bytes is a weekly newsletter curated by members of the bug bounty community. The first series is curated by Mariem, better known as PentesterLand. Every week, she keeps us up to date with a comprehensive list of write-ups, tools, tutorials and resources. This issue covers the week from 18 to 25 of September. Our […]

Huge collection of links to articles, podcasts and videos from the infosec and bugbounty community

bugbounty linkdump security
OWASP Vulnerable Web Application https://owasp.org/www-project-vulnerable-web-application/#tab=Off-Line_apps
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
thumbnail
owasp security
chenjj/CORScanner: Fast CORS misconfiguration vulnerabilities scanner🍻 https://github.com/chenjj/CORScanner
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
thumbnail
bugbounty cors security
bloomberg/powerfulseal: A powerful testing tool for Kubernetes clusters. https://github.com/bloomberg/powerfulseal
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
thumbnail

PowerfulSeal injects failure into your Kubernetes clusters, so that you can detect problems as early as possible. It allows for writing scenarios describing complete chaos experiments.

kubernetes security
Penetration Testing Methodology - 0DAYsecurity.com http://0daysecurity.com/pentest.html
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
pentesting security
Windows 7 UAC whitelist https://www.pretentiousname.com/misc/win7_uac_whitelist2.html
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
security uac windows
Corsy v1.0 - CORS Misconfiguration Scanner https://www.kitploit.com/2020/01/corsy-v10-cors-misconfiguration-scanner.html?m=1
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
thumbnail
cors security tools
REMnux: A Linux Toolkit for Malware Analysts https://remnux.org/
Wed 17 Jun 2020 11:08:16 AM CEST wallabag

REMnux® is a Linux toolkit for reverse-engineering and analyzing malicious software. REMnux provides a curated collection of free tools created by the community. Analysts can use it to investigate malware without having to find, install, and configure the tools.

malware security
danielmiessler/SecLists: SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more. https://github.com/danielmiessler/SecLists
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
thumbnail
security wordlist
SSRF bible. Cheatsheet https://docs.google.com/document/d/1v1TkWZtrhzRLy0bYXBcdLUedXGb9njTNIJXa3u9akHM/mobilebasic
Wed 17 Jun 2020 11:08:16 AM CEST wallabag
security ssrf
XSSer: Cross Site "Scripter" https://xsser.03c8.net/
Wed 17 Jun 2020 11:08:16 AM CEST wallabag

Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS vulnerabilities in web-based applications.

It provides several options to try to bypass certain filters and various special techniques for code injection.

security xss
2020's Best Hacking Tools for Android – Mubi Ace https://www.peerlyst.com/posts/2020-s-best-hacking-tools-for-android-mubi-ace?utm_source=peerlyst_perspective&utm_medium=email&utm_content=peerlyst_post&utm_campaign=weekly_roundup_04172020
Sat 18 Apr 2020 01:44:14 PM CEST wallabag
android pentesting security
CS253 - Web Security https://web.stanford.edu/class/cs253/
Mon 30 Mar 2020 10:53:39 AM CEST wallabag

This course is a comprehensive overview of web security. The goal is to build an understanding of the most common web attacks and their countermeasures. Given the pervasive insecurity of the modern web landscape, there is a pressing need for programmers and system designers to improve their understanding of web security issues.

We'll be covering the fundamentals as well as the state-of-the-art in web security.

Topics include: Principles of web security, attacks and countermeasures, the browser security model, web app vulnerabilities, injection, denial-of-service, TLS attacks, privacy, fingerprinting, same-origin policy, cross site scripting, authentication, JavaScript security, emerging threats, defense-in-depth, and techniques for writing secure code. Course projects include writing security exploits, defending insecure web apps, and implementing emerging web standards.

pentesting security
Every Type of XSS Attack, Explained - YouTube https://www.youtube.com/watch?v=nTCDQ0UmFgE
Wed 25 Mar 2020 09:50:43 PM CET wallabag
thumbnail
security xss
page 1 / 2
395 links
Shaarli - The personal, minimalist, super-fast, database free, bookmarking service by the Shaarli community - Theme by kalvn
Impressum