70 Flattrs Received From 33 People

How Heartbleed could've been found

tl;dr With a reasonably simple fuzzing setup I was able to rediscover the Heartbleed bug. This uses state-of-the-art fuzzing and memory protection ... [ blog.hboeck.de ]

Software Privdog worse than Superfish

tl;dr There is a software called Privdog. It totally breaks HTTPS security in a similar way as Superfish. In case you haven't heard it the past day... [ blog.hboeck.de ]

Adware Privdog worse than Superfish

tl;dr There is an adware called Privdog. It totally breaks HTTPS security. In case you haven't heard it the past days an Adware called Superfish ma... [ blog.hboeck.de ]

Comodo ships Adware Privdog worse than Superfish

tl;dr There is an adware called Privdog that gets shipped with software from Comodo. It totally breaks HTTPS security. In case you haven't heard it... [ blog.hboeck.de ]

What the GHOST tells us about free software vulnerability management

On Tuesday details about the security vulnerability GHOST in Glibc were published by the company Qualys. When severe security vulnerabilities hit t... [ blog.hboeck.de ]

Dancing protocols, POODLEs and other tales from TLS

The latest SSL attack was called POODLE. Image sourceThe world of SSL/TLS Internet encryption is in trouble again. You may have heard that recently... [ blog.hboeck.de ]