Favstar gets even better if you sign in.
Here's why signing in is good for you.
Okay I'm sick of emailing @foursquare & not getting an answer for a simple xss. Here is the POC for the 4sq store. http://t.co/0TOTEN8 #xss
Calling all devs & security researchers interested in node.js security.
Check out http://nodesecurity.io & get involved. We need your help
I have given up returning proper http status codes for things. If it's not 200 ok, it gets 418 I'm a teapot. Done.
I started a little node.js project called helmet to implement various security headers as express middleware. https://t.co/mqKHX3WH
It's easy to find vulnerable systems on massive scale then point & laugh. It's another thing entirely to work to fix them on that scale.
Don't try & change the security habits of an org overnight. Do it little by little & even then you will have to fight hard, don't give up.
Verifying your SSH key on github? Use ssh-keygen -lf .ssh/pub_key_file to generate fingerprint for comparison
Opened up the source for xss.io https://github.com/evilpacket/xss.io … Don't laugh too hard. Pull requests welcome.
Good writeup by @iagox86 & includes a nmap script for finding git repos in web roots http://t.co/AGNHwCSt
The person in front of me for the shower sold his spot to somebody else for 3 bitcoins. #toorcamp
“@dinosn: How I hacked http://Mega.co.nz http://blog.detectify.com/post/43100050401 …” < Fantastic writeup
I made a thing. A thing that uses redis 2.6 instances to crack sha hashes. https://t.co/bfGFROGQ Please fork & contribute.
@lavakumark @kkotowicz as I have said before famous last words found too often in code // TODO: input validation lol
Writing secure express.js apps http://blog.liftsecurity.io/post/37388272578/writing-secure-express-js-apps …
node-authy is a node.js library for the super simple 2 factor auth from @authy.com Please fork and contribute https://t.co/r50ULj4O
Father, husband, and webapp hacker. I love node.js & helping make it easier for devs to ship secure code. CSO at @andyet and Team Lead at @liftsecurity
