Hacker News
- Enough with the Salts: Updates on Secure Password Schemes http://chargen.matasano.com/chargen/2015/3/26/enough-with-the-salts-updates-on-secure-password-schemes.html 221 comments
- New Vulnerability: Mercurial Command Injection (CVE-2014-9462) http://chargen.matasano.com/chargen/2015/3/17/this-new-vulnerability-mercurial-command-injection-cve-2014-9462.html 4 comments
- Typing the Letters A-E-S Into Your Code (2009) http://chargen.matasano.com/chargen/2009/7/22/if-youre-typing-the-letters-a-e-s-into-your-code-youre-doing.html 63 comments
- Bypassing OpenSSL Certificate Pinning in iOS Apps http://chargen.matasano.com/chargen/2015/1/6/bypassing-openssl-certificate-pinning-in-ios-apps.html 13 comments
- What You Need To Know About Secure Password Schemes http://chargen.matasano.com/chargen/2007/9/7/enough-with-the-rainbow-tables-what-you-need-to-know-about-s.html 12 comments
- If You're Typing The Letters A-E-S Into Your Code, You're Doing It Wrong http://chargen.matasano.com/chargen/2009/7/22/if-youre-typing-the-letters-a-e-s-into-your-code-youre-doing.html 46 comments
- Ninja Threat Modeling http://chargen.matasano.com/chargen/2009/10/20/ninja-threat-modeling.html 11 comments
- A C++ Challenge - The Conclusion http://chargen.matasano.com/chargen/2009/10/15/a-c-challenge-the-conclusion.html 2 comments
- Diffie Hellman Parameter Validation Attacks Explained http://chargen.matasano.com/chargen/2007/9/25/adam-bozanich-did-not-uncover-an-nsa-ipsec-conspiracy-diffie.html 2 comments
- A C++ Challenge http://chargen.matasano.com/chargen/2009/10/9/a-c-challenge.html 24 comments
- Ruby For Pentesters - WIN32OLE http://chargen.matasano.com/chargen/2009/9/26/ruby-for-pentesters-win32ole.html 3 comments
- Indie Software Security: A ~12-Step Program http://chargen.matasano.com/chargen/2009/9/24/indie-software-security-a-12-step-program.html 13 comments
- Enough With the Salts: Updates on Secure Password Schemes http://chargen.matasano.com/chargen/2015/3/26/enough-with-the-salts-updates-on-secure-password-schemes.html 97 comments programming
- This New Vulnerability: Mercurial Command Injection (CVE-2014-9462) - Blog http://chargen.matasano.com/chargen/2015/3/17/this-new-vulnerability-mercurial-command-injection-cve-2014-9462.html 9 comments netsec
- If You’re Typing the Letters A-E-S Into Your Code You’re Doing It Wrong http://chargen.matasano.com/chargen/2009/7/22/if-youre-typing-the-letters-a-e-s-into-your-code-youre-doing.html 27 comments crypto
- Bypassing OpenSSL Certificate Pinning in iOS Apps http://chargen.matasano.com/chargen/2015/1/6/bypassing-openssl-certificate-pinning-in-ios-apps.html 10 comments netsec
- When security code fails, you find out 4 years from now, when a DVD with all your customer’s credit card and CVV2 information starts circulating in Estonia. http://chargen.matasano.com/chargen/2007/9/7/enough-with-the-rainbow-tables-what-you-need-to-know-about-s.html 126 comments programming
- Matasano Security - If You're Typing The Letters A-E-S Into Your Code, You're Doing It Wrong http://chargen.matasano.com/chargen/2009/7/22/if-youre-typing-the-letters-a-e-s-into-your-code-youre-doing.html 11 comments programming