Erlend Oftedal

@webtonull

Secure coding, open source tool developer, likes to break and fix things. OWASP Norway. Retire.js

Oslo, Norway
erlend.oftedal.no/blog/
Vrijeme pridruživanja: siječanj 2008.
271 fotografija ili videozapis Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @webtonull

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @webtonull

  1. prije 10 minuta

    Please read this thread

    Ok, so everyone knows I fight NCP (non consensual pornography, aka revenge porn), but to many- this is a very niche problem. Let me give you glimpse as to how big this issue is.
    Prikaži ovu nit
    1 korisnik označava da mu se sviđa
    Poništi
  2. proslijedio/la je Tweet
    1. velj

    Just in case you haven’t seen the details yet, here it is it is always good to run code on a SharePoint server :)

    With thanks to , I have more details about CVE-2020-0646! Now that's the most interesting one; this one allowed RCE via Workflows again similar to and but using another technique 🤓
    14 proslijeđenih tweetova 50 korisnika označava da im se sviđa
    Poništi
  3. 1. velj

    It should understand HATEOAS.

    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  4. 1. velj

    It should understand that HTTP verbs and resources, e.g understand that 200 OK means a URL path will no longer work. It should understand that POST creates a new resouce and use the new URL from Location. Or "self". Or "_self"

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. 1. velj

    A good API testing tool should parse swagger, WADL etc. It should test using different content-types. You should be able to give it lists of test data for different named fields.

    1 reply
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. 1. velj

    This

    Has anyone tested/found any good tools for automating REST API security testing? That you would recommend of course Pls RT for reach cc
    1 reply 6 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    30. sij

    We have started the ticket sale for BSides Oslo 2020, go and grab your ticket now!

    1 reply 15 proslijeđenih tweetova 18 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    29. sij

    Tickets go on sale tomorrow at 10:00 (CET). The price for the ticket is 486 NOK, if you want to (and are able to) support BSides Oslo there is a ticket option called "Friends of BSides", that ticket costs 1024 NOK.

    10 proslijeđenih tweetova 11 korisnika označava da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    24. sij

    NEW OBJECTS TO TRACE! 🔍 Just a little of your time looking at these objects could save a child: So far 24 000+ tips have helped our experts to investigate cases and, most importantly, to identify 10 children

    13 replies 209 proslijeđenih tweetova 140 korisnika označava da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    28. sij

    It was an honor to be an instructor at in 2019 - unfortunately, it isn't in the cards for me this year. This is a seriously special event unlike any other security con I've been to. Give it a go. You won't be disappointed!

    From March 9 - 13, you can attend in Leuven. It is a one-week in-depth course on secure application development. Ask our alumni, and they will tell you SecAppDev is one of the best and most immersive events they have seen! See you there?
    4 proslijeđena tweeta 13 korisnika označava da im se sviđa
    Poništi
  11. 24. sij

    👆

    1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  12. 24. sij

    Really happy with this year. Great talks by Jaya Baloo, , and Espen Johansen

    1 reply 1 proslijeđeni tweet 3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    22. sij

    Careful adoption of cloud architecture is a great way to enhance an organization's efficiency & security posture. Check out our latest guidance on how to navigate the cloud securely to make sure an adversary doesn't rain on your parade:

    8 replies 70 proslijeđenih tweetova 108 korisnika označava da im se sviđa
    Poništi
  14. proslijedio/la je Tweet
    24. sij

    Super excited to hear at 🙌 “Post Quantum Future”

    1 reply 2 proslijeđena tweeta 13 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  15. 24. sij

    Todays talk at is a follow-up of the one from 2018. Will feature four new vulnerabilities that have gained traction since then. With live demos 😱 Room 3 after the keynote

    12 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    22. sij

    Sir Michael Palin has paid tribute to his fellow Monty Python star Terry Jones. This is heartbreaking.

    288 replies 5.733 proslijeđena tweeta 27.015 korisnika označava da im se sviđa
    Poništi
  17. proslijedio/la je Tweet
    22. sij

    Knowledge is key to building secure applications. These three cheat sheets put that security knowledge at your fingertips for , , and data storage in the browser. Grab the free PDF, and subscribe to get updates if you want. Please share!

    1 reply 16 proslijeđenih tweetova 31 korisnik označava da mu se sviđa
    Poništi
  18. proslijedio/la je Tweet
    16. sij

    Funny that when you type “man” into your terminal, you get things explained to you Really makes u think 🤔🤔🤔

    217 replies 1.546 proslijeđenih tweetova 9.038 korisnika označava da im se sviđa
    Poništi
  19. 11. sij

    Talk to the people behind the platforms, like at . Explain the risk to the businesses. After all it is their supply chain.

    1 proslijeđeni tweet 4 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. 11. sij

    While I wholeheartedly agree we have a supply chain problem, I don’t believe doxing/wall-of-sheeping people on social media is the correct way to engange a community. Go to _dev_ conferences and explain the risk. Show better approaches.

    Okay, I am doing this before anyone convinces me it is a bad idea. Spreadsheet will be live later today so we can crowdsource this research. NPM supply chain security is a dumpster fire and it is time we get some public hard evidence out there proving it.
    Prikaži ovu nit
    1 reply 1 proslijeđeni tweet 12 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi

@webtonull još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·