by Bill Sempf
1. December 2019 09:30
Fortinet is communicating with static keys and a simple XOR. Whoops.
https://sec-consult.com/en/blog/advisories/weak-encryption-cipher-and-hardcoded-cryptographic-keys-in-fortinet-products/
An Android gif library has an interesting vulnerability that will affect many application.
https://seclists.org/fulldisclosure/2019/Nov/27
An OWASP member made a neat ZAP plugin that helps to attack deployed Kubernetes applications.
https://github.com/omerlh/zap-operator
Hope everyone had a great thanksgiving.
S
7005928b-5ee7-4c7b-bb99-d1567cf492c5|0|.0|96d5b379-7e1d-4dac-a6ba-1e50db561b04
Tags: