The Armored Code

A blog talking about offensive and defensive security and how to craft software in a secure way

All Stories

Some security tips for ruby hackers: leveraging the attack surface: part 2

In the first part of this overview about web application perimeter recognizance we stopped using ciphersurfer to check for SSL certificate weakness.

27 Jun 2012

What I learnt from Italian RubyDay

Today I attended the Italian RubyDay with a talk about application security. More in details the talk was about how to use ruby to automate some security tests as described...

15 Jun 2012

Some security tips for ruby hackers: leveraging the attack surface. Part 1.

In the first episode I introduced the security checks I’d like to talk about at the talk I have to give next Friday.

13 Jun 2012

Some security tips for ruby hackers: prelude

Next Friday I’ll give a talk about using ruby and gems to quick test a webapp for security issues.

12 Jun 2012

LeakedIN and the salt and pepper sauce

Two days ago, the Internet was squashed by a very large sensitive data breach. More than 6.4M of password hashes coming from LinkedIN were published by an unknown attacker crew...

07 Jun 2012

CVE-2012-2661: SqlInjection on Rails

A SQL Injection was discovered in ActiveRecord Rails' default ORM framework. Let's talk about the vulnerability, the patch and other mitigation stuff.

04 Jun 2012

Never miss a story from us, subscribe to our newsletter

Explore →

Osce (3) Tools (1) Offensive (1) Armoredbasics (1) Getting-root (1) Vulnserver (1)