Human-in-the-loop supply chain attacks can spread across developers and repositories. To help detect suspicious changes I created a GitHub Action inspired by incidents such as Miasma.
https://t.co/plcCy3ru5L
#GitHubActions#AppSec#DevSecOps#SupplyChainSecurity
Excited to unveil "Formshaker", a project years in the making with my friend Juan Manuel García Martínez! 🚀 Check it out, Feedback welcomed. 👉 https://t.co/rbNiYaO21h #Formshaker#WebSecurity#XSS#Tools"
📰 Breaking: We are proud to announce that CounterCraft has been awarded a sole-source contract from the U.S. government, with a ceiling of more than $26MM.
Learn more here⬇️ https://t.co/lWL9pz49pf
🎉New Website published🎉
🎁To celebrate the launch of the new website, we are giving away three annual Burp Bounty Pro licenses!
👉To participate you have to retweet and like. The winners will be announced on September 30.
👉https://t.co/DXxo2SKrY7
I found some design and implementation flaws in Wi-Fi again. All Wi-Fi devices are affected. It was a long ~9 months embargo, over this time a lot of info has been collected and that info now available at https://t.co/nAQtK9XY0R
As we get ready to release ATT&CK for Containers with our April release, we realize that some have gotten the wrong impression of how we’ve scoped Containers. We wanted to share some examples of upcoming groups and techniques starting with our new Ever Given group page.