Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @NimrodAviram
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @NimrodAviram
-
Nimrod Aviram proslijedio/la je Tweet
If you are using TLS client authentication with Java 11 or Java 13 you should patch your servers NOW.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Wait until you start talking to cryptographers working on TLS 1.3https://twitter.com/willmanduffy/status/1194804503205335040 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
We released a new version of our tools TLS-Attacker and TLS-Scanner. Besides various improvements TLS-Scanner now has a rating & recommendation system. Feedback on how we rate things is more than welcome.https://github.com/RUB-NDS/TLS-Scanner …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
After a longer time, we had again a look at SAML...resulted in a complete signature bypass in SimpleSAMLphp and xmlseclibs, and my coolest (public) Signature Wrapping exploit. Please patch. Writeup: https://www.hackmanit.de/en/blog-en/82-xml-signature-validation-bypass-in-simplesamlphp-and-xmlseclibs … (CVE-2019-3465) // cc
@hackmanitpic.twitter.com/ORzZfGcdJt
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
Child exploitation is "icky" and men in suits don't feel comfortable discussing it. They don't like planning ops against it. Everybody wants to "smash the perverts," but doing it correctly would require actual time investment in a very dark world.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
New Paper: “Practical Decryption exFiltration: Breaking PDF Encryption“ describing new attacks that uncover the plaintext of encrypted PDFs. To be presented at
@acm_ccs and joint work with@jensvoid@Murgi@v_mladenov@CheariX@JoergSchwenk.#PDFex 1/npic.twitter.com/1LjaHijRGs
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
The
@PwnieAwards winners for the best crypto attack this year are@vanhoefm and@eyalr0 with their Dragonblood: https://eprint.iacr.org/2019/383.pdf ...well deserved, congratulations :)Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
as many know, i’m being sued by Peter Todd for calling him a rapist. the lawsuit has been stressful and costly, to put it mildly. thanks to so many of you who have graciously offered donations and support—you can find details of how to do so here:http://gofundme.com/f/isis-lovecruft-legal-defense …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
We just put our paper on Scalable Scanning and Automatic Classification of TLS Padding Oracle Vulnerabilities online: https://github.com/RUB-NDS/TLS-Padding-Oracles/blob/master/TlsPaddingOracleScanning.pdf … //
@ic0nz1,@NimrodAviram I will present our results in the next session of the Crypto Summer School: https://summerschool-croatia.cs.ru.nl/2019/program.shtml …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
@KaiGellert talking about our results on forward security in TLS 1.3 0-RTT at#eurocrypt2019. Joint work with@NimrodAvirampic.twitter.com/bWlQtxbJaP
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
New paper: “'Johnny, you are fired!' – Spoofing OpenPGP and S/MIME Signatures in Emails" to appear
@USENIXSecurity '19. Joint work with@jensvoid@lambdafu@dues__@hanno@jurajsomorovsky@JoergSchwenk https://github.com/RUB-NDS/Johnny-You-Are-Fired …pic.twitter.com/OqPBCpb8zY
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
padcheck binary release now on
@TripwireInc GitHub https://github.com/Tripwire/padcheck/releases/tag/v1.0 … This is the version used to collect the final GOLDENDOODLE & Zombie POODLE figures presented at@BlackHatEvents#BHASIA Please open issues for bug reports :)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
My TLS CBC padding oracle scanner source code is now available: https://github.com/Tripwire/padcheck … (Dockerfile included) Full details about Zombie POODLE and GOLDENDOODLE are now on
@TripwireInc blog: https://www.tripwire.com/state-of-security/vert/tls-cbc-padding-oracles/ … Thank you for everyone who joined me at#BHASIApic.twitter.com/i70FAqxNlD
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
Do you want to find padding oracles in TLS? Or just want to check if your infrastructure is secure? Grab the tool from our USENIX paper and find out ;) https://web-in-security.blogspot.com/2019/03/scanning-for-padding-oracles.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Together with
@tibor_jager and@KaiGellert, we propose a few mechanisms to make TLS 1.3 0-RTT more efficient in storage. Kai will also present our work at@IACReurocrypthttps://twitter.com/tibor_jager/status/1101201361633505280 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Reporting the OpenSSL bug would not be possible without
@colmmacc and his colleagues. We just reported an invalid behavior, they performed all the hard analyses. Unfortunately, not all security teams are so collaborative...https://twitter.com/colmmacc/status/1100420600063905792 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
For our Usenix Paper we found a lot of Padding Oracle Vulnerabilities in TLS stacks of the Alexa Top-1 Million, including Citrix and OpenSSL. With
@jurajsomorovsky@NimrodAviram@craigtweets @JanisFliegens and others. Check our current findings at:https://github.com/RUB-NDS/TLS-Padding-Oracles …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
The Provosts' gofundme is here. Yep there's a ways to go. But I tell you what, it's already started to snowball since I first ran into them. Let's keep this rolling. Please give 'em a nudge, RT, signal boost, etc.https://www.gofundme.com/provost-farm-llc …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
"The 9 Lives of Bleichenbacher's CAT:New Cache ATtacks on TLS Implementations ", with Robert Gillham, Daniel Genkin, Adi Shamir,
@cryptodavidw and@yuvalyarom is now available at http://cat.eyalro.net/ pic.twitter.com/a51BEt0DA1
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Nimrod Aviram proslijedio/la je Tweet
Hi y'all. There's a lot of information going around about what's going on in Georgia. I have been very tangentially involved, but I wanted to report the facts in absence of opinion or other noise.https://medium.com/@mattbernhard/serious-vulnerabilities-in-georgias-online-voter-registration-system-cc319cbbe3d8 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.