-
![thumbnail]()
GitHub - kubescape/kubescape: Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security, compliance, and misconfiguration scanning, saving Kubernetes users and administrators precious time, effort, and resources.
April 26, 2023 at 8:08:13 PM GMT+2 - permalink -
-
https://github.com/kubescape/kubescape
-
![thumbnail]()
-
![thumbnail]()
-
![thumbnail]()
-
![thumbnail]()
-
![thumbnail]()
-
![thumbnail]()
-
Conférence sur l’analyse de malwares – Korben
March 23, 2018 at 11:38:49 AM GMT+1 - permalink -interessant, ça a l'air sympa comme job!
TIL : strings command
-
https://korben.info/conference-sur-lanalyse-de-malwares.html
-
![thumbnail]()
-
How can I see which sites have set the HSTS flag in my browser? - Information Security Stack Exchange
October 20, 2016 at 12:21:27 PM GMT+2 - permalink -Un peu une saloperie ce HSTS tout de même
Chrome:
Open Chrome Type chrome://net-internals/#hsts in the address bar of chrome Query domain: if it appears as a result, it is HSTS enabledFirefox:
Open file explorer Copy paste %APPDATA%\Mozilla\Firefox\Profiles\ in the address bar of file explorer (for Linux it is ~/.mozilla/firefox) Double click the folder you see (if you have multiple FF profiles, there will be multiple folders) Open SiteSecurityServiceState.txt. This textfile contains sites that have enabled HSTS.
-
http://security.stackexchange.com/questions/92954/how-can-i-see-which-sites-have-set-the-hsts-flag-in-my-browser
-
How to Automatically Tag Amazon EC2 Resources in Response to API Events - AWS Security Blog
October 10, 2016 at 3:09:55 PM GMT+2 - permalink -Intéressant comme workflow, l'objectif est de laisser les users/soft créer des EC2 comme ils veulent et avoir les droits seulement sur les EC2 qu'ils ont créé.
Comment ça marche ? auto tagging des EC2 avec l'userid à la création couplé avec une policy qui autorise les action seulement si le tag avec l'userid est présent.
pacon
Dans le meme genre sans l'auto tagging :
http://blogs.aws.amazon.com/security/post/Tx29HCT3ABL7LP3/Resource-level-Permissions-for-EC2-Controlling-Management-Access-on-Specific-Ins
-
https://blogs.aws.amazon.com/security/post/Tx150Z810KS4ZEC/How-to-Automatically-Tag-Amazon-EC2-Resources-in-Response-to-API-Events
-
NVD - FAQ
August 10, 2016 at 3:55:35 PM GMT+2 - permalink -What is the difference between the NVD and the Common Vulnerabilities and Exposures (CVE) standard vulnerability dictionary?
The NVD is the CVE dictionary augmented with additional analysis, a database, and a fine-grained search engine. The NVD is a superset of CVE. The NVD is synchronized with CVE such that any updates to CVE appear immediately on the NVD.
-
https://nvd.nist.gov/faq#d18d52fd-d1c7-44a5-b417-f2210724d433
-
Cross-origin resource sharing - Wikipedia, the free encyclopedia
May 19, 2016 at 3:34:59 PM GMT+2 - permalink -Petite piqûre de rappel, ça ne fait pas de mal
-
https://en.wikipedia.org/wiki/Cross-origin_resource_sharing
-
Archived content - Nmap tutorial
January 29, 2016 at 2:44:48 PM GMT+1 - permalink -La raison pour laquelle on voit des block en OUPUT de certains type ICMP dans les scripts iptables :
Scanning for open UDP ports is done with the -sU option. With this scan type, Nmap sends 0-byte UDP packets to each target port on the victim. Receipt of an ICMP Port Unreachable message signifies the port is closed, otherwise it is assumed open.
One major problem with this technique is that, when a firewall blocks outgoing ICMP Port Unreachable messages, the port will appear open. These false-positives are hard to distinguish from real open ports.
-
https://nmap.org/bennieston-tutorial/
