GitHub Security Lab

@GHSecurityLab

GitHub Security Lab’s mission is to inspire and enable the community to secure the open source software we all depend on.

securitylab.github.com
Clárú: Deireadh Fómhair 2019
41 Pictiúr nó físeán Pictiúir agus físeáin

Tweetanna

Chuir tú cosc ar @GHSecurityLab

An bhfuil tú cinnte gur mhaith leat breathnú ar na Tweetanna seo? Ní bhainfear an cosc de @GHSecurityLab trí bhreathnú ar Tweetanna.

  1. Tweet Greamaithe
    14 Samh 2019

    Hi 👋 we are the GitHub Security Lab. Find more information about us here:

    9 bhfreagra 116 d’atweetálacha 281 croí
    Taispeáin an snáithe seo
    Image
    Taispeáin an snáithe seo
    Cealaigh
  2. 20 uair an chloig ó shin

    We are proud to sponsor the conference and its . Estamos orgullosos de acompañar a como sponsors 💥

    4 atweetáil 23 croí
    Cealaigh
  3. 23 uair an chloig ó shin

    Can you in this code?

    Image
    3 fhreagra 4 atweetáil 37 croí
    Cealaigh
  4. 15 Iúil

    Don't miss and at for full details about how they used Java template engines to achieve RCE in several CMS products

    GHSL-2020-043: Server-side template injection in Liferay - CVE-2020-13445
    1 fhreagra amháin 11 d’atweetálacha 34 croí
    Cealaigh
  5. 15 Iúil

    GHSL-2020-043: Server-side template injection in Liferay - CVE-2020-13445

    14 d’atweetálacha 44 croí
    Cealaigh
  6. 15 Iúil

    GHSL-2020-039: Server-side template injection in Alfresco - CVE-2020-12873

    1 fhreagra amháin 2 atweetáil 8 gcroí
    Cealaigh
  7. 15 Iúil

    The GitHub Security Meetup starts NOW! Tune in:

    2 chroí
    Cealaigh
  8. 15 Iúil

    The GitHub Security Meetup goes live in 1h! Awesome lightning talks, real time interaction with speakers, and competitive security trivia! Tune in:

    5 atweetáil 13 croí
    Cealaigh
  9. 14 Iúil

    Explore at-scale vuln patching methodology at the Security meetup with 's talk about how he generated 1596 PRs to fix a vuln at scale. Tune in Wednesday July 15, 2020, at 5pm CET (Central Europe) - 8am PDT (Pacific Time)

    1 fhreagra amháin 4 atweetáil 11 croí
    Cealaigh
  10. 14 Iúil

    Get up close and personal with Android's NFC stack in 's post on how to find vulnerabilities in Android NFC through targeted fuzzing.

    24 d’atweetálacha 63 croí
    Cealaigh
  11. 13 Iúil

    Take a deep dive into command injection vulns with 's talk at the GitHub Security meetup. Tune in Wednesday July 15, 2020, at 5pm CET (Central Europe) - 8am PDT (Pacific Time)

    11 d’atweetálacha 69 croí
    Cealaigh
  12. 13 Iúil

    Don’t miss the GitHub Security meetup, will talk about package dependency compromises and what we can learn from them. Tune in Wednesday July 15, 2020, at 5pm CET (Central Europe) - 8am PDT (Pacific Time)

    5 atweetáil 7 gcroí
    Cealaigh
  13. 9 Iúil

    Django-two-factor-auth <= 1.11 stored session credentials in plain text, this issue was resolved in version 1.12, read more about this security advisory:

    6 atweetáil 8 gcroí
    Cealaigh
  14. 9 Iúil

    Check out 's lessons learned from building an industry coalition to secure open source software.

    Keeping the open source supply chain secure is important. See what we learned by creating the Open Source Security Coalition:
    1 atweetáil amháin 4 chroí
    Cealaigh
  15. Rinne Atweetáil
    9 Iúil

    If you missed my "Finding 0days in 2020" talk at , it's now on YouTube (and dubbed in English!)

    1 fhreagra amháin 13 d’atweetálacha 56 croí
    Cealaigh
  16. 7 Iúil

    LiveQL episode 1 starts NOW. Join

    Image
    1 fhreagra amháin 8 n-atweetáil 27 croí
    Cealaigh
  17. 7 Iúil

    LiveQL episode 1 with and : Streaming starts in 1h on the GitHub twitch channel! 11am PT - 2pm ET - 8pm CET. Don't miss it.

    Image
    2 atweetáil 3 chroí
    Cealaigh
  18. 7 Iúil

    Sometimes the beans you plant grow into RCE! Read all about Java exploit gardening in 's new post

    1 fhreagra amháin 64 d’atweetálacha 184 croí
    Cealaigh
  19. 6 Iúil

    Join and for LiveQL, an unscripted live auditing session, as they cover some methods of finding non-intuitive string manipulation vulnerabilities in C code on tomorrow's Security Live Stream!

    Image
    1 fhreagra amháin 29 d’atweetálacha 102 croí
    Cealaigh
  20. 6 Iúil

    GHSL-2020-058: OOB read in Apache Guacamole prior to 1.2.0 - CVE-2020-9497

    3 atweetáil 4 chroí
    Cealaigh
  21. 1 Iúil

    GHSL-2020-128: OOB read vulnerability in FreeRDP RLEDECOMPRESS -2020-4033

    5 atweetáil 7 gcroí
    Cealaigh

Ní dhearna @GHSecurityLab Tweetáil fós.

Tá moill ar an lódáil, is cosúil.

Tá Twitter ag cur thar maoil le gníomhaíocht nó tá fadhb eile ann. Bain triail eile as nó tabhair cuairt ar Stádas Twitter chun tuilleadh eolais a fháil.

    Seans, leis, go dtaitneodh seo leat

    ·