ERNW Sectools will provide tools that will make IT environments a safer place. We are engineering our knowledge, experience and expertise into new security tools and we will ensure, that our tools will be designed and developed in a secure manner, so they won’t become a weak link in customer environments.
Get the latest news about technical topics within the IT-Security Community and a lot of special insights. Sign up now for our Newsletter:
Thank you for signing up! You’ll receive a notification from out mailinglist manager to finally opt you in.
TROOPERS18 was the best year ever (did you check our archives?) and it will be challenging to do better… However, we accept the challenge! The trainings and talks were from high quality and choices were difficult to make… We hope you will enjoy reading these little teasers! Follow us on Twitter (@WEareTROOPERS) for more information […]
During code reviews we often see developers using weak RNGs like math.random() to generate cryptographic secrets. We think it is commonly known that weak random number generators (RNG) must not be used for any kind of secret and recommend using secure alternatives. I explicitly did not state a specific language yet, because basically every language […]
It is possible to spoof the URLs that Plume will open to arbitrary locations because of how Plume parses URLs. The preview of an URL in a tweet will show the complete (at least the host name and the first few chars of the URL) but shortened URL. However, if the URL contains a semicolon […]