Hacker News
- Google OAuth is broken (sort of) https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/ 182 comments
- Browse millions of secrets leaked in GitHub/NPM via Forager https://trufflesecurity.com/blog/introducing-forager/ 3 comments
- Driftwood: Know if private keys are sensitive https://trufflesecurity.com/blog/driftwood 20 comments
- Postman users are exposing Thousands of live Passwords/API keys https://trufflesecurity.com/blog/postman-carries-lots-of-secrets 37 comments netsec
- Google Oauth is Broken (sort of) https://trufflesecurity.com/blog/google-oauth-is-broken-sort-of/ 3 comments netsec
- Live API Keys and Source Code Leaked in 4,500 of the Top Alexa Sites https://trufflesecurity.com/blog/4500-of-the-top-1-million-websites-leaked-source-code-secrets/ 14 comments netsec
- Truffle Security is proud to host a new XSSHunter, that finds new vulnerabilities https://trufflesecurity.com/blog/xsshunter/ 5 comments netsec
- TruffleHog Now Scans CircleCI log outputs for passwords/credentials https://trufflesecurity.com/blog/scanning-circlci/ 2 comments netsec
- Driftwood: Immediately Know Which Private Keys are Sensitive https://trufflesecurity.com/blog/driftwood 3 comments netsec
- TruffleHog The Chrome Extension https://trufflesecurity.com/blog/trufflehog-the-chrome-extension 3 comments netsec
- An API Worm In The Making: Thousands Of Secrets Found In Open S3 Buckets https://trufflesecurity.com/blog/an-s3-bucket-worm-in-the-making-thousands-of-secrets-found-in-open-s3-buckets 4 comments netsec