cve   412

« earlier    

Adding CVE scanning to a CI/CD pipeline – @lucjuggery – Medium
A Docker image contains an application and all its dependencies. As it also contains the numerous binaries and librairies of an OS, it’s important to make sure no vulnerabilities exist in its root…
docker  security  ci  pipeline  scanning  vulnerability  cve 
12 days ago by hayzer
Syrian Civil Society Is Leading Efforts to Rehabilitate ISIS Supporters: Syria From Within | Chatham House, Oct 2018
The most advanced rehabilitation initiative to deal with former ISIS members has been established through the Syrian Counter Extremism Centre (SCEC), which is the only centre of its kind in Syria. The centre is located in Mare (which is controlled by Turkish-led forces) and was established by local civil society actors and religious scholars in October 2017.

Founded in a former school, the centre includes 35 staff, all of which are working on a voluntary basis. Due to its limited capacity of 25-30 people, the centre was able to reach an arrangement with some of the local courts to refer captured ISIS members to the centre for rehabilitation.

The activities of the centre include workshops and seminars in religious doctrine to counter ISIS propaganda and narratives by explaining the damages caused by ISIS attacks and who the real targets of such assaults were. Videos, photos, reports and newspapers are usually used as evidence to support the argument.

Likewise, the residents attend courses in civic education, law, communication, human security, human rights and other relevant topics that can help reintegrate them into their communities. While group psychosocial support sessions are mandatory for everyone, many must also attend individual sessions to help pull them away from ISIS ideology.

Despite the importance of such community-based efforts, most of them are ad-hoc initiatives which negatively limits their scale, impact and sustainability. The Syrian civil society groups leading such efforts have no previous experience in the field of rehabilitation or countering violent extremism.
civil_society  CVE  Mar15  Aleppo  ISIS 
25 days ago by elizrael
The ROBOT Attack - Return of Bleichenbacher's Oracle Threat
Return of Bleichenbacher's Oracle Threat - ROBOT is the return of a 19-year-old vulnerability that allows performing RSA decryption and signing operations with the private key of a TLS server.
ssl  security  ctf  cve 
4 weeks ago by dbe
RT : Interesting new research on counter-terrorism/ and non-violent resistance. Look forward to reading more | Brain…
CVE  from twitter
5 weeks ago by antaldaniel
An application [written in Crystal] for local searching of CVE data.
crystal_lang  cve  database  is:repo 
8 weeks ago by andrewsardone
F5 Rules for AWS WAF Common Vulnerabilities and Exposures (CVE)を利用して脆弱性を突くアクセスをブロック | DevelopersIO
こんにちはコカコーラ大好きカジです。 今回はAWS WAF Managed Ruleに追加されたF5のCVEルールを利用して、脆弱性攻撃のアクセスをブロックしてみたいと思います。 AWS WAF マネージドルールって何? […]
aws  waf  f5  cve 
8 weeks ago by oppara

« earlier    

related tags

0day  1.11  1.3  2018  accountability  admin  advantages  aleppo  amd64  analysis  android  api  apple  article  authentication  aws  bangladesh  bestpractices  bezpieczeństwo-informatyczne  bezpieczeństwo  bitcoin  bolster  bug  c  capabilities  cefs  centos  cert  ci  civil_society  clr  code  comic  communities  computer  config  container  containers  copyonwrite  cow  cpe  cpu  crystal_lang  ctf  cybersecurity  dashboard  data  database  debian  deradikalisierung  dirty  docker  downstream  engine  errata  exploit  exploitation  exploits  f5  feedback  flatpak  freeexpression  fuckwit  fun  funny  geek  git  github  github_repos  gitlab  go  golang  government  hacking  hacks  hat  humor  image  important  information  infosec  intel  ipad  iphone  is:repo  isis  islamismus  javascript  jenkins  js  jugendarbeit  june  kaiser  kernel  kpti  kubernetes  lab  lang-en  linux  list  local  mac  mar15  meltdown  microsoft  minix  mitre  mongodb  netsec  networkmanager  node  nodejs  nordvpn  npm  overview  patch  patches  patching  pentesting  perceive  pipeline  poc  popss  postgres  postgresql  postmortem  prng  program  proof_of_concept  prävention  pulp  rdbms  red-hat  red  redhat  reference  release  root  rpms  salafimus  samba  scanning  schule  scp  search  security  server  southasia  spacewalk  spectre  sql  sqlite  ssh  ssh_config  ssl  ssrf  steps  strategies  sysadmin  takes  terrorism  tips  tls  to  tool  tools  training  tricks  tuesday  tunneling  ubuntu  ufuq  update  updates  upstream  us  useroaming  vf  virtualbox  vuln  vulnerabilities  vulnerability  waf  waitid  wifi  windows  woocommerce  wordpress  x  x64  xkcd  yum 

Copy this bookmark: