Recent searches

No recent searches

Search options

Only available when logged in.
mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Administered by:

Server stats:

8.1K
active users

mastodon.world: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0

#SecurityTools

0 posts0 participants0 posts today
Zoe Gilbert

Testing tools for mobile applications are pivotal in identifying weaknesses, protecting sensitive information, and preserving the trust of users. Covering a range of processes from static analysis to mobile app threat detection, these tools support multi-platform application building. Some of the most popular are MobSF, Appium and OWASP ZAP.

Read for more information: impactqa.com/blog/best-mobile-

ImpactQA · 10 Best Security Testing Tools | ImpactqaWe have shortlisted 10 Most Popular Mobile App Security Testing Tools available in the market along with their main features.
#MobileAppSecurity#SecurityTools
Marco Ciappelli🎙️✨:verified: :donor:

This is about to happen! Join us!

How To Detect And Mitigate Non-Human Identity And Crytographic Vulnerabilities — An ITSPmagazine Webinar With SandboxAQ
Thursday, May 15, 2025 | 1:00 PM 2:00 PM EST

Unmanaged cryptographic assets and non-human identities have left security teams blind to critical risks. These gaps have fueled vulnerabilities, breaches, compliance challenges, and operational drag across enterprise environments.

Join us to see how #AQtiveGuard transforms this landscape.

✨ crowdcast.io/c/how-to-detect-a

More than just visibility, AQtive Guard unifies your non-human identities and cryptographic assets into a single inventory to deliver end-to-end visibility, deeper risk analysis, and streamlined compliance in a single pane of glass—with automated discovery, real-time threat detection, and root cause analysis powered by their unique LQM.

Seamlessly integrated into your existing stack, it’s the AI-driven SaaS platform built to secure today’s systems—and tomorrow’s.

By attending, you will get to:
Discover how to gain unified visibility into cryptographic assets and non-human identities —including API keys, certificates and service accounts—in cloud environments

Explore how AQtive Guard empowers security teams with automated discovery, threat detection, and root cause analysis—enabling faster remediation, reduced risk, and stronger compliance without disrupting existing workflows.

Learn how to future-proof your security posture, with a platform designed for AI Security Operations, Post-Quantum Cryptography readiness, and seamless integration into your existing security stack.

PANELISTS
Marc Manzano
General Manager of Cybersecurity, SandboxAQ
MODERATORS
Sean Martin, CISSP Co-Founder, ITSPmagazine
Marco Ciappelli Co-Founder, ITSPmagazine

Can’t attend the live webinar? All registrants get exclusive access with a link to rewatch the recording.

Register To Attend: crowdcast.io/c/how-to-detect-a

#cybersecurity, #cryptography, #AIsecurity, #infosec, #webinar, #securitytools, #threatdetection, #cloudsecurity, #sandboxAQ, #ITSPmagazine #tech #technology #quantum

crowdcastHow To Detect And Mitigate Non-Human Identity And Crytographic Vulnerabilities — An ITSPmagazine Webinar with SandboxAQRegister now for How To Detect And Mitigate Non-Human Identity And Crytographic Vulnerabilities — An ITSPmagazine Webinar with SandboxAQ on crowdcast, scheduled to go live on May 15, 2025, 01:00 PM EDT.
mauvehed 🐿️ (KØMVH)

Was working with GitLeaks this morning, when it failed to find over 20 secrets in a git repo.

Here are examples of what it didn't find:

INDEXER_PASSWORD=SecretPassword

INDEXER_PASSWORD=SecretPassword

API_PASSWORD=MyS3cr37P450r.*-

DASHBOARD_PASSWORD=kibanaserver

That is EXTREMELY disappointing! These are pretty obvious secrets!

#SysAdmin#Security#SecurityTools
Dumbledore

Dumb question incoming: I've been seeing a lot of discussion about using LLMs for security tasks (summarizing alerts, generating reports, etc).

While the potential seems high, I keep thinking about the adversarial ML risks. Things like model poisoning, prompt injection tailored to security contexts or generating subtly misleading information.

How are professionals building practical safeguards or verification steps when integrating AI into sensitive security workflows?

Is human oversight the only reliable check for now?

#infosec#AI#LLM
pelemarse

PentestGPT, an AI-driven tool released in 2024, uses GPT-4 to guide penetration testers through hacking tasks, suggesting recon steps, exploitation commands, and analyzing results.

#pentestgpt #ai #penetrationtesting #cybersecurity #gpt #ethicalhacking #chatgpt #infosec #securitytools #openai #securityresearch #hackingassistant
darknet.org.uk/2025/04/pentest

Darknet - Hacking Tools, Hacker News & Cyber Security · PentestGPT – AI-Powered Penetration Testing AssistantPentestGPT is a new AI-driven tool that acts as a virtual penetration testing assistant. Released in 2024 by a security researcher (GreyDGL)​, it leverages OpenAI’s GPT-4 model to interactively guide penetration testers through hacking tasks. In simple terms, PentestGPT lets you have a “ChatGPT-like” conversation where it suggests recon steps, exploitation commands, and even helps analyze results during a pentest. Features & Capabilities of PentestGPT – AI-Powered Penetration Testing Assistant AI-Guided Workflow: PentestGPT can suggest the next steps in an engagement. For example, after you tell it you’ve scanned a host and found open ports, it might recommend running nmap
TrendingLive feeds
About