Aaron Parecki

#security

• Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies | by Alex Birsan | Feb, 2021 | Medium (medium.com)

  #security

  Wed, Feb 10, 2021 9:51am -08:00
• What You Should Know Before Leaking a Zoom Meeting (theintercept.com)

  #zoom #security

  Wed, Jan 20, 2021 1:41pm -08:00
• That’s not how 2FA works – Terence Eden’s Blog (shkspr.mobi)

  #security #2fa

  Sun, Jan 17, 2021 12:12pm -08:00
• Protect domains that don’t send email - GOV.UK (www.gov.uk)

  #email #security #dns

  Wed, Nov 25, 2020 11:38am -08:00
• Ok Google: please publish your DKIM secret keys – A Few Thoughts on Cryptographic Engineering (blog.cryptographyengineering.com)

  #email #dkim #cryptography #security

  Tue, Nov 17, 2020 7:54am -08:00
• When PKCE Cannot Protect Your Confidential OAuth Client (www.hackmanit.de)

  #oauth #openid #pkce #nonce #security

  Mon, Oct 26, 2020 10:02am -07:00
• How I Found An alg=none JWT Vulnerability in the NHS Contact Tracing App | zofrex.com (www.zofrex.com)

  #jwt #security

  Wed, Oct 21, 2020 7:48am -07:00
• Okay, I think we need a list of all the mistakes in the ironPeak post, because there are a lot of them... (twitter.com)

  #apple #security

  Wed, Oct 7, 2020 1:27pm -07:00
• Apple T2 vulnerability (ironpeak.be)

  #apple #security #t2

  Tue, Oct 6, 2020 9:52pm -07:00
• Hacking OAuth

  Sep

  30

  September 30, 2020 7:00pm - 8:00pm (-0700)

  Online

  GIDS.WEB

  #oauth #oktadev #security

  permalink
• What's New in OAuth and OpenID Connect

  Sep

  16

  September 16, 2020 11:20am - 11:50am (+1000)

  Online

  API Days Live Australia

  View Slides

  #apidays #security #oauth #openid

  permalink
• API Days Live Australia

  Sep

  14

  Sep

  15

  Sep

  16

  September 14-16, 2020
  3 days

  Online

  #apidays #oauth #security

  permalink
• borisbabic/browser_cookie3: This is a fork of browser_cookie (github.com)

  #cookies #security

  Wed, Sep 9, 2020 5:59pm -07:00
• Debugging for Malware Analysis (resources.infosecinstitute.com)

  #malware #security

  Wed, Sep 9, 2020 5:46pm -07:00
• Methodology for Reverse-Engineering Malware (zeltser.com)

  #malware #security

  Wed, Sep 9, 2020 5:45pm -07:00
• How to Think About OAuth Security

  Sep

  2

  September 2, 2020 11:00am - 11:45am (-0700)

  Online

  Disclosure

  View Slides

  #oauth #security

  permalink
• Disclosure

  Sep

  2

  September 2, 2020 9:00am - 6:00pm (-0700)

  Online

  #okta #oauth #security

  permalink
• 

  I'm giving a talk about OAuth security at #DisclosureConf tomorrow! It's not too late to register! https://developer.okta.com/blog/2020/09/01/aaron-parecki-disclosure-conf-2020

  Portland, Oregon • 71°F

  9 likes 5 reposts 1 reply 1 mention

  #security #oauth #disclosureconf

  Tue, Sep 1, 2020 8:33am -07:00
• The HID global iClass key (ss23.github.io)

  "3F90EBF0910F7B6F"

  #security

  Thu, Aug 27, 2020 6:32pm -07:00
• zardus/wargame-nexus: A sorted and updated list of security wargame sites. (github.com)

  #security

  Thu, Aug 27, 2020 6:32pm -07:00