WPScan is a black box WordPress vulnerability scanner.
Posts tagged with security.
Subscribe to the security tag feed.
You tell [Kitestring] that you’re going on a trip, and then it checks up on you (via SMS) to make sure you haven’t been mugged or assaulted. You reply to the SMS messages (or check in on the website) to confirm your well-being. If you “go dark,” the app alerts a list of emergency contacts that you set up ahead of time.
DissidentX is a censorship resistance tool.
It has the capability of steganographically encoding messages in files. Special features include:
- Messages cannot be decoded without the key
- A single decoder for all file types and encoding techniques, including all future ones
- Format-specific encoders can be easily written without having to worry about information theoretic encoding or cryptography
- Support for multiple messages to multiple keys in a single file
zuluCrypt is a front end to cryptsetup and tcplay and it is a tool that make it easy to manage LUKS,PLAIN and TRUECRYPT encrypted volumes through a GUI and a simpler to use CLI interface.
zuluCrypt can manage encrypted volumes residing in regular files,LVM and mdraid devices as well as regular block devices and partitions.
Thanks to Alan, who says:
This makes strong passwords. That’s it!
Encrypted expiring text shared via secure link.
Use the web service, or install it on your server.
IronPigeon is a decentralized communication protocol that provides high confidentiality and authenticity for the messages.
Messages are signed for authenticity, encrypted for confidentiality, and transmitted indirectly so that eavesdroppers find it difficult or impossible to establish whether two parties have even communicated, what was communicated or how much was communicated.
Panopticlick tests your browser to see how unique it is based on the information it will share with sites it visits.
RetroShare is a Open Source cross-platform, Friend-2-Friend and secure decentralised communication platform. It lets you to securely chat and share files with your friends and family, using a web-of-trust to authenticate peers and OpenSSL to encrypt all communication.
Bunny is a wireless. meshing, darknet that uses 802.11 to hide its communications
See here for more info.
Bitmessage is a P2P communications protocol used to send encrypted messages to another person or to many subscribers. It is decentralized and trustless, meaning that you need-not inherently trust any entities like root certificate authorities. It uses strong authentication which means that the sender of a message cannot be spoofed, and it aims to hide “non-content” data, like the sender and receiver of messages, from passive eavesdroppers like those running warrantless wiretapping programs.
Bitmessage is in need of an independent audit to verify its security.
[Keycard] locks and unlocks your Mac when it detects your device is moving out and moving in range.
Thanks again to Tunnelr for sponsoring One Thing Well.
Tunnelr offers unlimited SSH, VPN and PPTP tunnelling at decent prices: it costs $10 a month for all three services combined. And if you sign up using the code “onethingwell” before Sunday, you’ll get a 20% discount.
Many thanks to Tunnelr for sponsoring One Thing Well this week.
And if you sign up using the coupon code “onethingwell”, you’ll get a 20% discount.
Do I really need a VPN service?
Short answer: yep, you probably do.
As Firesheep showed back in 2010, your privacy and security are at risk every time you connect to a public WiFi network. Using a VPN or SSH tunnel keeps the data you transfer over any network safe from prying eyes.
If your ISP, mobile provider, employer or government blocks sites and shapes traffic, using a tunnel effectively returns the internet to its natural, unrestricted state.
And—let’s be honest—even if you don’t give a fig about privacy and security, using a VPN lets you sneak around region restrictions on popular video streaming sites, and is probably a sensible precaution if you use Bittorrent for anything other than downloading Linux distros.
Why choose Tunnelr?
Tunnelr have a sensible logging policy designed with user privacy in mind. The service is reliable and fast—I’ve been doing a lot of downloading and streaming this week to make sure!—and there are no caps on speed or bandwidth limitations. Tunnelr has nodes across the US, Europe and, as of this week, Scandinavia.
After those essentials, the biggest draw for me is the array of protocols available, and the way that Tunnelr emphasises easy setup for folk new to tunnelling without leaving more experienced users out in the cold.
For example, setting up an OpenVPN tunnel on OS X only takes a few clicks: log in to your Tunnelr account, download an automatically generated configuration bundle, import it into Tunnelblick or Viscosity, and whack ‘connect’.
But if you’re the kind of person who’d rather do a quick
ssh email@example.com -D 8080 -N and tweak your applications accordingly, Tunnelr have you covered too.
In other words, Tunnelr is aimed at One Thing Well readers and the friends and family members who rely on One Thing Well readers for free tech support!
You would say all that, this is a sponsored post! Any downsides?
I found switching between nodes a wee bit fiddly, requiring a settings change at the Tunnelr website and—if you’re using OpenVPN—tinkering with configuration files.
Also, Tunnelr doesn’t (yet) have any nodes in Asia, so if you live there it might not be the best choice for day-to-day use.
Using a VPN or SSH tunnel is a good idea—essential in some circumstances, I’d say—and Tunnelr offers a low-cost, sturdy service that values your privacy and lets you get set up and running in a few minutes. Sign up using the “onethingwell” coupon code to get a 20% discount.
You can also opt for an SSH-only account at $5 a month, or pay $7 a month if you only need a VPN or PPTP. ↩