toad.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mastodon server operated by David Troy, a tech pioneer and investigative journalist addressing threats to democracy. Thoughtful participation and discussion welcome.

Administered by:

Server stats:

258
active users

#AppSec

14 posts11 participants1 post today
Tanya Janca | SheHacksPurple :verified: :verified:<p>🎥 Missed one of my past conference talks? Let’s fix that.</p><p>I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.</p><p>“Security Metrics that Matter”<br>📽️ <a href="https://twp.ai/4ioGd3" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4ioGd3</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAwareness</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>🎥 Missed one of my past conference talks? Let’s fix that.</p><p>I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.</p><p>“Building Security Champions”<br>📽️ <a href="https://twp.ai/4ioIx7" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4ioIx7</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAwareness</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/securitychampions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securitychampions</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>✅ Virtual-friendly<br>✅ Packages available<br>✅ Built for developers + security pros<br>✅ Fun, funny, and full of practical, actionable advice</p><p>DM or email me for deets! Tanya [AT] shehackspurple [DOT] ca</p><p><a href="https://infosec.exchange/tags/CyberSecurityAwarenessMonth" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurityAwarenessMonth</span></a> <a href="https://infosec.exchange/tags/SecurityAwarenessMonth" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAwarenessMonth</span></a> <a href="https://infosec.exchange/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureCoding</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a><br>3/3</p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>With 25+ presentations to choose from, I cover everything from <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> and <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>threatmodeling</span></a> to AI risks and <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a>—always with humor, clarity, and actionable takeaways.</p><p>💡 These aren’t just talks—they’re lessons your team will remember.</p><p><a href="https://twp.ai/9PUvTW" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/9PUvTW</span><span class="invisible"></span></a></p><p>2/3</p>
Open Security Conference<p>Meet the team behind the Open Security Conference 2025! 🚀 <a href="https://opensecurityconference.org/about/team/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">opensecurityconference.org/abo</span><span class="invisible">ut/team/</span></a></p><p>We even have a quest for all of you who enjoy them. 🌟</p><p>1️⃣ Who of us likes to capture flags and also flames?<br>2️⃣ Who of us joined the organizing team in 2025?<br>3️⃣ Who of us created the osco logo?</p><p>Yep, you might need to dig a bit, yet we're sure you'll find the clues. Post your responses in the comments, we're looking forward to them! 🤩</p><p>In any case, make sure to register to get your osco package if you haven't already. See you October 2-5! 😉 <a href="https://opensecurityconference.org/conference/registration" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">opensecurityconference.org/con</span><span class="invisible">ference/registration</span></a> </p><p><a href="https://infosec.exchange/tags/osco" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osco</span></a> <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osco25</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/ProductSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProductSecurity</span></a> <a href="https://infosec.exchange/tags/OTsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTsecurity</span></a> <a href="https://infosec.exchange/tags/OpenSpace" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSpace</span></a> [lisi]</p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>🎥 Missed one of my past conference talks? Let’s fix that.</p><p>I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.</p><p>“Top Ten Security Tips for APIs”<br>📽️ <a href="https://twp.ai/4ioJ8r" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4ioJ8r</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAwareness</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/APISecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>APISecurity</span></a></p>
Open Security Conference<p>We want to thank REWE digital for their continued sponsorship of the Open Security Conference - you're awesome!</p><p>You helped us make <a href="https://infosec.exchange/tags/osco24" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osco24</span></a> more affordable for folks interested in cybersecurity, and the same applies for <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osco25</span></a>. Your support gets us a big step closer and we're grateful. 😊🙏🏻</p><p>Discover <a href="https://infosec.exchange/tags/REWEdigital" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>REWEdigital</span></a>: <a href="https://www.rewe-digital.com/en" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="">rewe-digital.com/en</span><span class="invisible"></span></a></p><p>Learn more about all our sponsors: <a href="https://opensecurityconference.org/support/sponsors/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">opensecurityconference.org/sup</span><span class="invisible">port/sponsors/</span></a></p><p><a href="https://infosec.exchange/tags/HomeOfIT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>HomeOfIT</span></a> <a href="https://infosec.exchange/tags/IT" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>IT</span></a> <a href="https://infosec.exchange/tags/Retail" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Retail</span></a> <a href="https://infosec.exchange/tags/osco" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osco</span></a> <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>osco25</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/Security" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Security</span></a> <a href="https://infosec.exchange/tags/ITSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITSecurity</span></a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/ProductSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ProductSecurity</span></a> <a href="https://infosec.exchange/tags/OTsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OTsecurity</span></a> <a href="https://infosec.exchange/tags/OpenSpace" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSpace</span></a> [lisi]</p>
Konstantin :C_H:<p>Two criticals. Two known exploited. One a zero-day.<br>July saw a spike in high-severity vulnerabilities.</p><p>Here are CVE Crowd's Top 3 from the 624 CVEs discussed across the Fediverse last month.<br>For each CVE, I've included a standout post from the community.<br>Enjoy exploring! 👇</p><p><a href="https://infosec.exchange/tags/Pentesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pentesting</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/BugBounty" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BugBounty</span></a> <a href="https://infosec.exchange/tags/Hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hacking</span></a> <a href="https://infosec.exchange/tags/CVE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CVE</span></a> <a href="https://infosec.exchange/tags/CveCrowd" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CveCrowd</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>🎥 Missed one of my past conference talks? Let’s fix that.</p><p>I’m sharing my favorites—packed with real-world advice, lessons, and a few laughs.</p><p>“Shifting Security Everywhere” - Not just LEFT anymore!<br>📽️ <a href="https://twp.ai/4io7kb" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4io7kb</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CyberSecurity</span></a> <a href="https://infosec.exchange/tags/SecurityAwareness" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityAwareness</span></a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a></p>

Happy Friday! ☀️ The weekend is getting closer and you don't know what to do yet? Or have lots of plans already? How about registering for the Open Security Conference? 😉

Why? This is the place for everyone interested in cybersecurity to come together and learn from each other, from wherever we are right now, with whatever we need right now. The #osco is an open space focused on people, co-created by people.

October 2 - 5 in Rückersbach, close to Frankfurt am Main in Germany. See you there! 🤩

opensecurityconference.org/

#osco #osco25 #CyberSecurity #Security #InfoSec #AppSec #ProductSecurity #OTsecurity #OpenSpace [lisi]

Open Security ConferenceHomeBy osco Team

Are you interested in a different kind of security conference?

Then take a look at the Open Security Conference (@OSCo). #osco25 takes place from October 2 to 5 in Rückersbach (Germany near Frankfurt) and registration is still open at opensecurityconference.org/.
(this is an English version of the original German thread infosec.exchange/@realn2s/1149)

Why?

The Open Security Conference aims to be diverse and inclusive. This also includes different levels of knowledge and experience.
It is therefore not only for security experts or for people who have (already) worked in the security sector for a long time,
but also for people who are interested in security or want to get into the field.

The #OpenSpace format not only enables expert presentations,
but also non-expert topics or questions as session topics. Sessions are not resticted to presentations, they can be interactive, collaborative, workshops or basically anything else.

Since topics do not have to be submitted months in advance,
but the agenda is created jointly by the participants, hot topics can also be covered.

The conference is non-commercial, i.e. the total costs are shared between the participants (including the organizers).
The costs include accommodation and meals in the conference hotel.

And yes, there are also sponsors who cover part of the costs.

But not everything is different.

There are great keynotes e.g. by @bkastl ("History repeating itself") and Mireia Cano ("Building an AppSec Program from Scratch").

Open Security ConferenceHomeBy osco Team
Continued thread

If anyone is up for doing a #security review of Breakmancer's protocol (#cryptography, networking, handshake logic) I'd be *very* appreciative!

These are the most recent protocol docs: docs.rs/breakmancer/0.9.0/brea

It's nothing super complicated, just an exchange of X-Wing keys and a KDF, with out-of-band key verification—but *anything* can be gotten wrong. :-)

docs.rsbreakmancer::protocol - RustNetwork and encryption protocol.