I use 1Password password manager for saving all my passwords, various other credentials and private notes and it has been a lifesaver thus far. Having a unique password for all my accounts and using 2FA wherever available means I should be quite safe in case any of my accounts gets breached or the password gets leaked.

Links

• ​Lynis - Security auditing and hardening tool, for UNIX-based systems.

• ​Theo De Raadt presented "Pledge: A new security technology in OpenBSD" - Great talk.

• ​SeKey - Use Touch ID / Secure Enclave for SSH Authentication.

• ​DEF CON 26 - Christopher Domas - GOD MODE UNLOCKED Hardware Backdoors in redacted x86 (2018)​

• ​SOPS - Editor of encrypted files that supports YAML, JSON, ENV, INI and BINARY formats and encrypts with AWS KMS, GCP KMS, Azure Key Vault and PGP.

• ​ClusterFuzz - Scalable fuzzing infrastructure which finds security and stability issues in software.

• ​Some security related notes​

• ​RAMBleed - Reading Bits in Memory Without Accessing Them.

• ​Sliver - General purpose cross-platform implant framework that supports C2 over Mutual-TLS, HTTP(S), and DNS.

• ​Infosec_Reference - Information Security Reference That Doesn't Suck.

• ​Messaging Layer Security (MLS) - Security layer for encrypting messages in groups of size two to many.

• ​Molasses - Rust implementation of the Message Layer Security group messaging protocol.

• ​mkcert - Simple zero-config tool to make locally trusted development certificates with any names you'd like.

• ​Boulder - ACME-based CA, written in Go.

• ​If you were tasked to conduct a security audit on a server/database-backed web app, where would you start? (2019)​

• ​Resilience engineering papers​

• ​How Monzo security team handle secrets (2019)​