2025-02-07 | Jan Kopriva | SSL 2.0 turns 30 this Sunday... Perhaps the time has come to let it die? |
2023-04-13 | Johannes Ullrich | HTTP: What's Left of it and the OCSP Problem |
2022-07-06 | Johannes Ullrich | How Many SANs are Insane? |
2022-05-12 | Rob VandenBrink | When Get-WebRequest Fails You |
2022-02-14 | Johannes Ullrich | Reminder: Decoding TLS Client Hellos to non TLS servers |
2021-09-28 | Jan Kopriva | TLS 1.3 and SSL - the current state of affairs |
2021-04-16 | Xavier Mertens | HTTPS Support for All Internal Services |
2021-04-15 | Johannes Ullrich | Why and How You Should be Using an Internal Certificate Authority |
2021-03-30 | Jan Kopriva | Old TLS versions - gone, but not forgotten... well, not really "gone" either |
2020-12-30 | Jan Kopriva | TLS 1.3 is now supported by about 1 in every 5 HTTPS servers |
2020-12-19 | Guy Bruneau | Secure Communication using TLS in Elasticsearch |
2020-09-09 | Johannes Ullrich | A First Look at macOS 11 Big Sur Network Traffic (New! Now with more GREASE!) |
2019-12-13 | Jan Kopriva | Internet banking sites and their use of TLS... and SSLv3... and SSLv2?! |
2019-10-22 | Bojan Zdrnja | Testing TLSv1.3 and supported ciphers |
2019-10-21 | Jim Clausing | What's up with TCP 853 (DNS over TLS)? |
2019-08-07 | Bojan Zdrnja | Verifying SSL/TLS configuration (part 2) |
2019-07-23 | Bojan Zdrnja | Verifying SSL/TLS configuration (part 1) |
2019-04-13 | Johannes Ullrich | Configuring MTA-STS and TLS Reporting For Your Domain |
2018-08-10 | Remco Verhoef | Hunting SSL/TLS clients using JA3 |
2018-01-22 | Didier Stevens | HTTPS on every port? |
2017-05-30 | Johannes Ullrich | FreeRadius Authentication Bypass |
2017-03-08 | Richard Porter | What is really being proxied? |
2017-03-01 | Bojan Zdrnja | SSL/TLS on port 389. Say what? |
2016-07-05 | Johannes Ullrich | Apache Update: TLS Certificate Authentication Bypass with HTTP/2 (CVE-2016-4979) |
2016-01-08 | Mark Hofman | SLOTH, attack on TLS using MD5 |
2015-05-20 | Brad Duncan | Logjam - vulnerabilities in Diffie-Hellman key exchange affect browsers and servers using TLS |
2015-02-11 | Johannes Ullrich | Did PCI Just Kill E-Commerce By Saying SSL is Not Sufficient For Payment Info ? (spoiler: TLS!=SSL) |
2014-08-11 | Bojan Zdrnja | Verifying preferred SSL/TLS ciphers with Nmap |
2014-06-12 | Johannes Ullrich | Metasploit now includes module to exploit CVE-2014-0195 (OpenSSL DTLS Fragment Vuln.) |
2014-03-04 | Daniel Wesemann | Triple Handshake Cookie Cutter |
2011-09-22 | Rob VandenBrink | TLS 1.2 - Look before you Leap ! |
2011-09-20 | Kevin Liston | SSL/TLS Vulnerability Details to be Released Friday |
2011-07-10 | Raul Siles | Security Testing SSL/TLS (HTTPS) Implementations |
2010-07-23 | Mark Hofman | A bit old, however CISCO has updated the November 2009 TLS renegotiation vulnerability with additional vulnerable products and patch information. More details here http://www.cisco.com/warp/public/707/cisco-sa-20091109-tls.shtml |
2010-04-25 | Raul Siles | Manual Verification of SSL/TLS Certificate Trust Chains using Openssl |
2010-02-10 | Marcus Sachs | Vulnerability in TLS/SSL Could Allow Spoofing |
2009-11-13 | Adrien de Beaupre | TLS & SSLv3 renegotiation vulnerability explained |
2009-11-06 | Andre Ludwig | New version of OpenSSL released - OpenSSL 0.9.8l |
2009-11-05 | Swa Frantzen | TLS Man-in-the-middle on renegotiation vulnerability made public |
2009-10-16 | Adrien de Beaupre | Cyber Security Awareness Month - Day 16 - Port 1521 - Oracle TNS Listener |
2009-05-09 | Patrick Nolan | Unusable, Unreadable, or Indecipherable? No Breach reporting required |