Hi/5: WrongSecrets, IT Assets, OWASP Top 10, CORS and Password Wisdom

Security Journey's hi/5

17-11-2021 • 2 mins

Commonjoe/ WrongSecrets - https://github.com/commjoen/wrongsecrets
Improper secret storage is a common technology problem. Use this tool to expose your developers to how to do it wrong, so they can learn how to do it right

List of IT Assets an Attacker is most likely to Extort -https://www.helpnetsecurity.com/2021/10/13/it-assets-target/
Attackers love IT assets; here are the top things they are targeting and exploiting.

OWASP Top 10 2021: 7 action items for app sec teams https://www.securityjourney.com/post/owasp-top-10-2021-7-action-items-for-app-sec-teams
Your AppSec team has work to do with the new OWASP Top Ten for 2021.

How to win at CORS - https://jakearchibald.com/2021/cors
CORS is tough to implement correctly and develop against – but it is worth the effort. Security is often difficult.

7 Unconventional Pieces of Password Wisdom -https://www.darkreading.com/application-security/7-unconventional-pieces-of-password-wisdom
Nice summary of NIST 800-63b.

You Might Like

Darknet Diaries
Darknet Diaries
Jack Rhysider
Fortnite Emotes
Fortnite Emotes
Lawrence Hopkinson
Double Tap
Double Tap
Accessible Media Inc.
This Week in Retro
This Week in Retro
Neil from RMCretro - The Cave, Chris from 005 AGIMA and Dave
The Vergecast
The Vergecast
The Verge
TechStuff
TechStuff
iHeartPodcasts
Waveform: The MKBHD Podcast
Waveform: The MKBHD Podcast
Vox Media Podcast Network
Smashing Security
Smashing Security
Graham Cluley & Carole Theriault
Hard Fork
Hard Fork
The New York Times