Application Security Weekly for April 29

My favorite thing this week, how HTTPS works, via a cartoon of cats.

https://howhttps.works/

 

Ray Ozzie (yeah, that Ray Ozzie) says he has a solution for backdoorable encryption.

https://www.theregister.co.uk/2018/04/27/ray_ozzie_encryption_backdoor/

 

Tutorial by Check Point on stealing NTLM hashes with weaponized PDF files.  Check your file upload features, folks!

https://research.checkpoint.com/ntlm-credentials-theft-via-pdf-files/

 

And that's the news!

Add comment

Bill Sempf

Husband. Father. Pentester. Secure software composer. Brewer. Lockpicker. Ninja. Insurrectionist. Lumberjack. All words that have been used to describe me recently. I help people write more secure software.

 

 

PageList

profile for Bill Sempf on Stack Exchange, a network of free, community-driven Q&A sites

MonthList