Web vulnerability scanner
Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 6700 potentially dangerous files/programs, checks for outdated versions of over 1250 servers, and version specific problems on over 270 servers. It also checks for server configuration items such as the presence of multiple index files, HTTP server options, and will attempt to identify installed web servers and software. Scan items and plugins are frequently updated and can be automatically updated.
This free online service performs a deep analysis of the configuration of any SSL web server on the public Internet.
HTTP Response headers are name-value pairs of strings sent back from a server with the content you requested. They are typically used to transfer technical information like how a browser should cache content, what type of content it is, the software running on the server and much, much more. Increasingly, HTTP Response headers have been used to transmit security policies to the browser. By passing security policies back to the client in this fashion, hosts can ensure a much safer browsing experience for their visitors and also reduce the risk for everyone involved. Let's take a look at some more security based headers.
The world’s most used penetration testing framework
Knowledge is power, especially when it’s shared. A collaboration between the open source community and Rapid7, Metasploit helps security teams do more than just verify vulnerabilities, manage security assessments, and improve security awareness; it empowers and arms defenders to always stay one step (or two) ahead of the game.
IT-Sicherheit | Datenschutz | Hacking
Auf richterliche Anordnung rückt Apple bislang iCloud-Daten heraus, darunter komplette iPhone-Backups. Dies solle künftig nicht mehr möglich sein.
Linux workstation security checklist.
This document is aimed at teams of systems administrators who use Linux workstations to access and manage your project's IT infrastructure.
Firejail is a SUID program that reduces the risk of security breaches by restricting the running environment of untrusted applications using Linux namespaces and seccomp-bpf. It allows a process and all its descendants to have their own private view of the globally shared kernel resources, such as the network stack, process table, mount table. BTW it is not restricted to firefox.
Firefox Monitor, Helping People Take Control After a Data Breach
Basic security precautions for non-profits and journalists in the United States, mid-2017.
Zusammenfassung: Wie der Staat den Umgang mit Zero-Day-Schwachstellen regeln sollte
CrypTool Portal - cryptography for everyone. That CrypTool was originally designed as an internal business application for information security training. CrypTool has since developed into an important open-source project in the field of cryptology.
Die "Sicherheitsanwendung" leitete den gesamten iOS-Datenverkehr über Facebooks Server um und sammelte ihn dort auch zu Analysezwecken.
Authentifizierungsverfahren des YubiKeys erklärt