New features: - trend graphs! 📈 - settings auto save to device 💾 - dock stats (via settings) - hide scrollbars (via settings) 👉 cvetrends.com Feedback welcome :)

Happy New Year from London 🎉🎊🎉 Wishing everyone a fantastic 2022

ThePhish: an automated phishing email analysis tool - Built with Python + Flask - Based on TheHive, Cortex and MISP It's also got a super nice + detailed README 👍 Credit @its_emalderson github.com/emalderson/The…

Hmm, what are these strange coloured boxes I keep seeing... theguardian.com/games/2022/jan… Sounds interesting, let's see what it's like... Wordle 211 3/6 ⬛🟩🟨🟨🟨 🟩⬛🟩⬛⬛ 🟩🟩🟩🟩🟩 Okay, I'm hooked! *shares with everyone* powerlanguage.co.uk/wordle/

Gotta sanitize those pesky spaces! Source: "I was asked to look into a possible data breach on a very old website. This was the SQL injection protection" - reddit.com/r/ProgrammerHu…

HOUDINI: Hundreds of Offensive and Useful Docker Images for Network Intrusion A curated list of network security related Docker images. Includes docker run commands + cheatsheets GitHub: github.com/cybersecsi/HOU… Web app: houdini.secsi.io Credit SecSI

CVE Trends should have more followers The CVE Trends project gathers crowdsourced vulnerability trends intelligence from the best #infosec source - Twitter. Kudos to Simon J. Bell for this great community contribution.

New vulnerability scanning project from NCSC UK - Nmap scripts to help system owners / admins find specific vulnerabilities - first released script scans for 21Nails (Exim MTA RCE vulnerabilities CVE-2020-28017 through CVE-2020-28026): github.com/nccgroup/nmap-…

Wholeaked: a file-sharing tool to find whodunit in case of leakage - hides a unique signature in the shared file for each recipient - works with every file type - additional features for PDF, DOCX, MOV - written in Go Demo: youtube.com/watch?v=EEDtXp… github.com/utkusen/wholea…

Stratus Red Team: an open-source adversary emulation tool for the cloud. Detonate offensive attack techniques in a granular and self-contained manner to test your threat detection. github.com/Datadog/stratu… Kudos to Christophe Tafani-Dereeper

PM shares AWS migration experience: youtu.be/_8AHPqzuLkM

Top 10 CI/CD Security Risks Identify focus areas for securing CI/CD ecosystems Website: cidersecurity.io/top-10-cicd-se… PDF: cidersecurity.io/wp-content/upl… GitHub repo: github.com/cider-security… Credit: Omer Gil & Daniel Krivelevich from Cider Security

Decrypting your own HTTPS traffic with Wireshark Useful for reverse engineering APIs, analysing app privacy, vulnerability research, etc trickster.dev/post/decryptin…

If only there was a way to play Minecraft AND monitor security alerts at the same time… Ooh 👀 SIEMCraft - Security Information and Event Management in Minecraft Blog: blog.tofile.dev/2022/06/10/sie… Demo: youtu.be/8Vyf8Y5wcRY Repo: github.com/pathtofile/sie… Credit: Pat_H

We're not on vacation! It's just that Lagos, Portugal, is so beautiful ☀️ We had a very fun and productive offsite there for our European and Security teams. Big shoutout to Tiago Henriques and #OurCoalition

CyberOwl: a daily updated summary of the most frequent types of security incidents currently being reported from different sources. github.com/karimhabush/cy…

The Workings of Whatsapp's Backups (and why you should enable End-to-End Encrypted Backups) sudneela.github.io/posts/the-work…

If you’ve ever wondered how cyber insurance works, here’s a great thread from my awesome colleague @balgan (also, big up the honeypots 🍯!)

Blackbird: an OSINT tool to search for accounts by username across 153 sites (including Facebook, YouTube, Twitter, Reddit, GitHub, etc) github.com/p1ngul1n0/blac…

The current status of CVE Trends