mastodon.world is one of the many independent Mastodon servers you can use to participate in the fediverse.
Generic Mastodon server for anyone to use.

Server stats:

8.1K
active users

#SecurityTools

0 posts0 participants0 posts today

Testing tools for mobile applications are pivotal in identifying weaknesses, protecting sensitive information, and preserving the trust of users. Covering a range of processes from static analysis to mobile app threat detection, these tools support multi-platform application building. Some of the most popular are MobSF, Appium and OWASP ZAP.

Read for more information: impactqa.com/blog/best-mobile-

ImpactQA · 10 Best Security Testing Tools | ImpactqaWe have shortlisted 10 Most Popular Mobile App Security Testing Tools available in the market along with their main features.

This is about to happen! Join us!

How To Detect And Mitigate Non-Human Identity And Crytographic Vulnerabilities — An ITSPmagazine Webinar With SandboxAQ
Thursday, May 15, 2025 | 1:00 PM 2:00 PM EST

Unmanaged cryptographic assets and non-human identities have left security teams blind to critical risks. These gaps have fueled vulnerabilities, breaches, compliance challenges, and operational drag across enterprise environments.

Join us to see how #AQtiveGuard transforms this landscape.

✨ crowdcast.io/c/how-to-detect-a

More than just visibility, AQtive Guard unifies your non-human identities and cryptographic assets into a single inventory to deliver end-to-end visibility, deeper risk analysis, and streamlined compliance in a single pane of glass—with automated discovery, real-time threat detection, and root cause analysis powered by their unique LQM.

Seamlessly integrated into your existing stack, it’s the AI-driven SaaS platform built to secure today’s systems—and tomorrow’s.

By attending, you will get to:
Discover how to gain unified visibility into cryptographic assets and non-human identities —including API keys, certificates and service accounts—in cloud environments

Explore how AQtive Guard empowers security teams with automated discovery, threat detection, and root cause analysis—enabling faster remediation, reduced risk, and stronger compliance without disrupting existing workflows.

Learn how to future-proof your security posture, with a platform designed for AI Security Operations, Post-Quantum Cryptography readiness, and seamless integration into your existing security stack.

PANELISTS
Marc Manzano
General Manager of Cybersecurity, SandboxAQ
MODERATORS
Sean Martin, CISSP Co-Founder, ITSPmagazine
Marco Ciappelli Co-Founder, ITSPmagazine

Can’t attend the live webinar? All registrants get exclusive access with a link to rewatch the recording.

Register To Attend: crowdcast.io/c/how-to-detect-a

#cybersecurity, #cryptography, #AIsecurity, #infosec, #webinar, #securitytools, #threatdetection, #cloudsecurity, #sandboxAQ, #ITSPmagazine #tech #technology #quantum

crowdcastHow To Detect And Mitigate Non-Human Identity And Crytographic Vulnerabilities — An ITSPmagazine Webinar with SandboxAQRegister now for How To Detect And Mitigate Non-Human Identity And Crytographic Vulnerabilities — An ITSPmagazine Webinar with SandboxAQ on crowdcast, scheduled to go live on May 15, 2025, 01:00 PM EDT.

Was working with GitLeaks this morning, when it failed to find over 20 secrets in a git repo.

Here are examples of what it didn't find:

INDEXER_PASSWORD=SecretPassword

INDEXER_PASSWORD=SecretPassword

API_PASSWORD=MyS3cr37P450r.*-

DASHBOARD_PASSWORD=kibanaserver

That is EXTREMELY disappointing! These are pretty obvious secrets!

Dumb question incoming: I've been seeing a lot of discussion about using LLMs for security tasks (summarizing alerts, generating reports, etc).

While the potential seems high, I keep thinking about the adversarial ML risks. Things like model poisoning, prompt injection tailored to security contexts or generating subtly misleading information.

How are professionals building practical safeguards or verification steps when integrating AI into sensitive security workflows?

Is human oversight the only reliable check for now?

#infosec#AI#LLM