A security and tech blog that embraces vulnerability as a catalyst for growth, fostering a supportive community of learners. Dive in for insightful discussions, the latest must read news, expert advice, and I promise to keep it entertaining along the way.
This week with the release of iOS 9, Apple has introduced some new requirements for their TLS standards under the label App Transport Security (ATS). After going down this rabbit hole a bit for a few days to make sure we were playing nice with the...
For years, we at WhiteHat have been recommending Tokenization as the number one protection from Cross Site Request Forgery (CSRF). Just having a token is not enough, of course, as it must be cryptographically strong, significantly random, and prop...
Thanks to the kindness of Scott Roberts and our DFIR crew, my laziness has been supported and he open sourced his blog so that I could just fork it and create my own. Expect some nonsense here that might mirror the WhiteHat Blog, but more so will ...
