I finally had some free time on my hands and decided to extend Scout's support to Nvidia's DPUs. Scout v2.1.0: Now with aarch64 support and improved support when working on a native arm machine. github.com/eyalitki/Scout

👋 Attending #OWASP Global AppSec San Francisco this week? Don't miss Salt Security VP of Research Yaniv Balmas's session "API Security: Stories from the Trenches" Friday, Nov. 18! Get details here: ow.ly/s9i850LCVUf #apisecurity OWASP® Foundation

Yaniv Balmas You Rock! Wonderful Talk at OWASP GLOBAL APPSEC SF

Just discovered Mandiant has an Urban Dictionary entry. Fantastic stuff. Huge if true. urbandictionary.com/define.php?ter…

Taking over booking.com accounts by abusing OAuth 2.0 youtu.be/IK_AV1UFS-0 Read the technical details here: salt.security/blog/traveling…?

Booking.com OAuth Implementation Allows Full Account Takeover: bit.ly/3yosNoN by Elizabeth Montalbano

Nothing like a good visual aid to remember how to assemble a network cable.

Salt Security Salt Security's contribution, beyond the sponsorship, warms our hearts. A big shoutout to Yaniv Balmas, who contributed ideas and use cases that were quoted in the latest addition. 💖

Just discovered a full account takeover on Grammarly.com, Vidio.com and more using a new OAuth attack technique. This is the last part of the OAuth trilogy; in total, we could take over 1+ BILLION accounts! salt.security/blog/oh-auth-a… #OAuth #hacking

Looking for a contact in OpenAI security team… anyone here has any leads?

Check out our latest research. This time, flaws in GenAI ecosystems and several issues in ChatGPT and its integrated plugins. Kudos, Aviad Carmel, for this wonderful research. salt.security/blog/security-…

Hey Elon Musk, our team at Salt Labs just released some very concerning security issues in the ChatGPT ecosystem, which may put a lot of data for a lot of users at risk. Time for OpenAI to step up their security game, don't you think? Full report: salt.security/blog/security-…