hellosct1@mamot.fr · @hellosct1
161 followers · 1191 posts · Server mamot.frSensible à la #securite #cybersecurite #devsecops #secops #secdevops #security #pirate Alors ce meetup @lizard est pour vous https://www.meetup.com/fr-FR/lizard_secu/events/294032860/
#securite #cybersecurite #devsecops #secops #secdevops #security #pirate
hellosct1@mamot.fr · @hellosct1
161 followers · 1188 posts · Server mamot.frLes données sensibles dans la #cybersecurite sera le fil rouge du meetup @lizard Un joli programme à découvrir #devsecops #secdevops #secops https://mamot.fr/@lizard/110519203310933983
#cybersecurite #devsecops #secdevops #secops
Doyensec · @doyensec
15 followers · 11 posts · Server infosec.exchange
Congrats @felix on "Hacking the cloud with SAML" making PortSwigger's Top 10 Web Hacking Techniques! To celebrate, #Doyensec is releasing our tool to generate exploitation PoCs for one of the issues he found. Enjoy!
https://github.com/doyensec/CVE-2022-39299_PoC_Generator
https://portswigger.net/research/top-10-web-hacking-techniques-of-2022
#doyensec #appsec #devsecops #secdevops
Doyensec · @doyensec
12 followers · 6 posts · Server infosec.exchange
Need help securing #ImageMagick against the arbitrary file read described in CVE-2022-44268? The pictured policy change can mitigate it for you.
For more recommendations on hardening your security policies check out our free tool at:
https://imagemagick-secevaluator.doyensec.com
#imagemagick #doyensec #appsec #secdevops #securityresearch
Doyensec · @doyensec
11 followers · 5 posts · Server infosec.exchange
Teleport just published the report from our latest round of auditing their Microsoft RDP Desktop Access tool. Read it today to see the findings & our approach to clients' product security
#doyensec #appsec #security #devsecops #secdevops
Ben Stroz6i · @stroz
135 followers · 801 posts · Server infosec.exchangeWent ahead and fixed the cert for the SecDevSecOpsSec site and added a flat hmtl index.
No content, haven't quite decided on that yet. For now, just a silly domain
#DevSecOps #SecDevOps #DevOpsSec #SecDevSecOpsSec #DevOpsSecurity #ShiftLeft #ShiftEverywhere #SDSOS
#devsecops #secdevops #devopssec #secdevsecopssec #devopssecurity #shiftleft #shifteverywhere #sdsos
Chema Alonso :verified: · @chemaalonso
643 followers · 113 posts · Server ioc.exchange
El lado del mal - V Edición BootCamp Online de DevOps & DevSecOps en GeeksHubs Academy https://www.elladodelmal.com/2023/01/v-edicion-bootcamp-online-de-devops.html #DevOps #DevSecOps #SecDevOps #formacion #hackyourcareer #cursos
#devops #devsecops #secdevops #formacion #hackyourcareer #cursos
Jeremy · @jredmond
16 followers · 47 posts · Server infosec.exchangeRequesting some community help, I'm looking for some data/articles introducing a #cybersecurity #IaC pipeline. This would allow cybersecurity to apply IaC security features like Azure NSG/Policy etc. instead of allowing #DevOps to open their own ports etc. I want to prevent cybersecurity from slowing things down but also want cybersecurity to have some control. Anyone have any good data on this to back me up? #DevSecOps #SecDevOps
#cybersecurity #iac #devops #devsecops #secdevops
Jay Thoden van Velzen · @jaythvv
226 followers · 1341 posts · Server infosec.exchange
I often talk about SecDevOps - a DevOps approach to security operations, with rapid iterations, a focus on scale and automation, and responsive to the community of developer/DevOps teams we serve with scans, alerts, or other findings.
Aside from the ability for SecOps teams to transform their operations for the cloud, this also helps align teams to the pace and agility of developer teams following a DevSecOps approach, and therefore better support them during the service lifecycle as they herd the cattle.
Security can only be a successful enabler for developer teams in #cloudsecurity if we meet those we support where they are and synchronize our frequencies.
#cloudsecurity #sharedfate #devsecops #secdevops
ITSEC News · @itsecbot
1107 followers · 33105 posts · Server schleuss.onlineEpisode 248: GitHub’s Jill Moné-Corallo on Product Security And Supply Chain Threats - In this episode of the Security Ledger Podcast, Paul speaks with Jill Moné-Corallo... https://feeds.feedblitz.com/~/723575006/0/thesecurityledger~Episode-GitHub%e2%80%99s-Jill-Mon%c3%a9Corallo-on-Product-Security-And-Supply-Chain-Threats/ #applicationdevelopment #leftshiftedsecurity #vulnerabilities #applecomputer #topstories #companies #secdevops #spotlight #devsecops #podcasts #software #bounty
#bounty #software #podcasts #devsecops #spotlight #secdevops #companies #topstories #applecomputer #vulnerabilities #leftshiftedsecurity #applicationdevelopment
Nick Anderson · @nickanderson
33 followers · 152 posts · Server fosstodon.org
Day 18/25: The Samba software enables file and printer sharing, and is typically used in mixed #Linux and #Windows environments. It can provide an attack vector and has been affected by vulnerabilities in the past. If not used, it should be removed:
#linux #windows #security #secdevops #compliance #cve #devops #cfengine
farimani · @farimani
68 followers · 35 posts · Server infosec.exchange
What is SecDevOps vs. DevSecOps?
"Philosophically, you can think of it as a sort of DevOps for security operations where people who develop the code (in this case, detection logic) are the same people who operate it (in this case, respond to signals and alerts)."
Brilliant article by @jaythvv. #decsecops #secdevops
https://www.linkedin.com/pulse/secdevops-autonomic-security-operations-cloud-jay-thoden-van-velzen/
Recon InfoSec · @recon_infosec
450 followers · 16 posts · Server infosec.exchangeICYMI -- @shortstack wrote an awesome blog on secure remote access tools for the modern sysadmin.
Gone are the days of exposing services directly to the internet -- #ZeroTrust is more than buzz word, its a way of life!
A few of our favorite tools for the job: StrongDM, @tailscale, @zerotier
https://blog.reconinfosec.com/remote-access-done-right #infosec #networksecurity #devops #secdevops
#zerotrust #infosec #networksecurity #devops #secdevops
Jay Thoden van Velzen · @jaythvv
56 followers · 106 posts · Server infosec.exchangeohai 👋
I am Jay, 🇳🇱, but for over 20 years on the California coast.
Managed to turn my ability to break things into productive channels, after a long stint in Analytics and Consulting.
I ran Multicloud Security Operations for a large cloud service provider for several years, finding out that secure cloud transformation is really difficult, but absolutely fascinating - especially since we're all still just figuring it out.
Now trying to translate the experience into strategy
BekahThe.Dev (She/Her) :heart_pan: :vlc: · @panfrieddupa
63 followers · 67 posts · Server infosec.exchange
#infosec #csrf #webdevelopment #securesoftwaredevelopment #netbeans #informationsecurity #secdevops
ITSEC News · @itsecbot
856 followers · 32559 posts · Server schleuss.online
Episode 243: The CSTO is a thing- a conversation with Chris Hoff of LastPass - Paul talks with Chris Hoff the Chief Secure Technology Officer at LastPass about t... https://feeds.feedblitz.com/~/711605425/0/thesecurityledger~Episode-The-CSTO-is-a-thing-a-conversation-with-Chris-Hoff-of-LastPass/ #applicationdevelopment #supplychainsecurity #technologies #cisocloseup #conferences #topstories #companies #interview #secdevops #spotlight #blackhat #lastpass #podcasts #devops #trends #cloud
#cloud #trends #devops #podcasts #lastpass #blackhat #spotlight #secdevops #interview #companies #topstories #conferences #cisocloseup #technologies #supplychainsecurity #applicationdevelopment
ITSEC News · @itsecbot
856 followers · 32557 posts · Server schleuss.online
State of Modern Application Security: 6 Key Takeaways For 2022 - In this Expert Insight, Harshil Parikh, CEO of Tromzo, reveals findings from the company'... https://feeds.feedblitz.com/~/682735004/0/thesecurityledger~State-of-Modern-Application-Security-Key-Takeaways-For/ #applicationdevelopment #applicationsecurity #vulnerabilities #hacks&hackers #dataprivacy #databreach #topstories #devsecops #secdevops #software #opinion #reports #threats #devops #survey #tromzo #appsec
#appsec #tromzo #survey #devops #threats #reports #opinion #software #secdevops #devsecops #topstories #databreach #dataprivacy #hacks #vulnerabilities #applicationsecurity #applicationdevelopment
hellosct1@mamot.fr · @hellosct1
151 followers · 1090 posts · Server mamot.fr
Après une phase de repos, Les #elephpants Le foo du roi "The Joker" font connaissance de la famille.
Je pense qu'ils seront présent à la #devcon12 le 16 décembre pour se faire adopter https://programmez.com/page-devcon/devcon-12-parlons-cybersecurite-devsecops-secure-design #php #cybersécurité #devsecops #secdevops
#elephpants #DevCon12 #php #cybersécurité #devsecops #secdevops
hellosct1@mamot.fr · @hellosct1
151 followers · 1090 posts · Server mamot.frJeudi prochain (4/11) se déroule les #gsdays Je parlerais de "La sécurité applicative par le design" #DevSecOps #secdevops #cybersecurity
https://gsdays.fr
#gsdays #devsecops #secdevops #cybersecurity
Lizard_secu · @lizard
11 followers · 87 posts · Server mamot.frRetrouvez les slides de @alexandreoda@twitter.com sur Vault présenté à notre dernier meetup https://speakerdeck.com/secu/la-gestion-des-secrets-avec-vault #cybersecurite #DevSecOps #secDevOps
#cybersecurite #devsecops #secdevops