Tweet
RT @basistheory 6/6 Security Testing rounds out our software testing series. Today, we sample some of the approaches, tools, and code that we use to secure our CI/CD pipelines and larger SDLC. basistheory.com/blog/security-…#devsecops #buildinpublic #qa #infosec #security
Watchovar is an open-source tool that protects your most critical asset - private data and accounts.

Follow us to learn more about how we aim to protect every email user on the internet, with our open-source approach to zero-trust security.

#buildinpublic #OpenSource #security
Sometimes doing a startup is updating all your #APPLE products because a #critical #security #update
#startups #buildinpublic #wastetime
See? Now cvewatch.aryya.id it has 75 pages indexed, i can expect more to come.

#buildinpublic #seo #security
Even SEO is the hardest for me, it needs to be done.

Just finished on SEO to get more impression and customers for cvewatch.aryya.id . I will monitor 1-2 weeks for the improvement.

Just added 5000 record in sitemap and improve in-site link

#buildinpublic #SEO #security
We almost reached 1200 developers on our waiting list! Join them to get access to Permify!

#API #Developer #Programming #security #RBAC #Auth
buff.ly/3p3KJk5
It really annoys me when I sign up for a service with my email address only to have them sell that information to some spammer.

Want an easy way to track who is selling your email address?

Answer:👇

#security #buildinpublic #email
When working with your #lowcode/#nocode tools, make sure you lock them down so that others don't take over and do nasty things with your projects.

Here are some of the #OpenSource tools I use to make my projects more secure:

#buildinpublic #security #startups #Cybersecurity
@harshil1712 @auth0 @n8n_io @stripe I've been meaning to work with @tanay1337 on this and you beat me to the punch!

More people need to spend time working on things like this to help add that all-important #security layer to their #nocode/#lowcode projects!

#buildinpublic #automation #startups
In VPN DNS is often more important than people realize. If you need to have proper DNS resolution within @ZeroTier, this is the way to go!

#NoCode #buildinpublic #security #startups #VPN
One of my work projects, a DNS server for ZeroTier users, has seen a new release. Check it out, it's pretty cool!

github.com/zerotier/zeron…
@dragondelis YES!!!

One of my favourite sayings is:

"Just because you're paranoid doesn't mean they AREN'T out to get you!"

#NoCode #buildinpublic #automation #startups #security
Was in a meeting recently when someone said re: solution #security:

"Open by design, closed by exception"

Just about fell off my chair since I'm increasingly moving toward a zero-trust security model!

Am I justified or paranoid?

#NoCode #buildinpublic #automation #startups
Doing some work with a client today and discovered some challenges using #PuTTY generated keys on a Mac computer.

One of the options we found is to potentially use the Mac ported client for PuTTY when using #SSH sessions keys!

#buildinpublic #security

ssh.com/academy/ssh/pu…
If you don't follow @tanay1337, then you really should consider adding him!

Tanay is my co-author & has a really unique perspective on all things #security #authentication #automation and #tech.

Follow him now to avoid disappointment!

#NoCode #buildinpublic #startups
The ability to run @ZeroTier on your network devices is a complete game changer!

No more complicated VPN setups!

This has made my day!

#NoCode #buildinpublic #automation #startups #network #VPN #security twitter.com/aconaway/statu…
Run @ZeroTier on your network gear. #NFD27
What Do You Do From Here?
Look for smarthome devices that have a "homebase" that is in your own home and that is not controlled by a server outside of your home and put all of your smart devices on a separate WiFi network without internet access.

#security #buildinpublic #diy
Most home automation systems rely on giving 3rd parties control of parts of your home in order for them to work.

Don't believe me?

Perform this test to see which parts of your smarthome can be controlled by someone else. 👇

#automation #buildinpublic #security #smarthome
New makers often ignore the importance of secure-first coding approach when building. The consequences can be dire.

18 days to the launch of Contentdrips 2.0 and all middleware are configured from the very first day
@contentdrips

#saas #buildinpublic #technology #security
Who here has used @keycloak as a #SSO provider? I've had really good success with it in a limited capacity but I'd love to hear other experiences/opinions/options.

#buildinpublic #NoCode #Security #saml
A question for all @bubble developers, would you consider a Bubble site secure? Is it much secure compared to @WordPress ? Who do you think is more secure? #NoCode ? #buildinpublic #Security
Had a great conversation with @colinwinhall today. He's got some fantastic ideas & I'm going to be looking at giving him a hand with one of his pet projects.

Some really brilliant ideas coming from him! Honoured & humbled he reached out to me!

#NoCode #buildinpublic #security
Need to post some app screenshots. Added some alert toastrs to display info messages. It's going little bit slow but at least I'm moving

It is #opensource app that saves NO messages, anywhere, ever
#privacy #security #buildinpublic
Anyway let's move on with our #chat #app
Need to implement some alerts, install #alamofire to send http requests.
It is #opensource app that saves NO history, anywhere
#privacy #security
#phantomchat #buildinpublic
I started working on my app phantomchat and there are always some other obligations in my life :D but I'll keep working on it

It is #opensource app that saves NO messages, anywhere
#privacy #security

#buildinpublic
@colinwinhall @Bitwarden @KeePass has a few variations and is a rock-solid option! I've used it in the past and even modified it to keep a portable version synced on a flash drive about 20 years ago!

#security #buildinpublic #Password
Thinking about building a solution for #it #security. Rt/Follow if interested knowing more. You can also comment with your pain points in this sector :)
#buildinpublic
Thanks for reading 🙏❤️.

Want to read more stuff like this? Then follow me @jansroka

I post daily about the struggle of building a #business as a #dev via #buildinpublic, #startups, #tech, #saas, #security and #indiehackers.
It's not uncommon for us to only use a portion of the capabilities of a device or software. Non-traditional use of tech can produce some really interesting results!

#NoCode #buildinpublic #security #hardware
Did you know that a normal LED can also receive light? 🚨

It can! In this paper, we point a laser at build-in LEDs of offices devices and transmit data to their firmware. This covert communication can bridge 25m with a throughput of 128 kbps.

intellisec.de/pubs/2021-acsa… 1/3
Announcing my new cryptography crate for @rustlang - rusty_paseto: Secure stateless PASETO tokens

crates.io/crates/rusty_p…
Thanks for having a look!

#buildinpublic #rustlang #paseto #security
It's amazing how much companies know about you and what they do with that information. Your personal data is an asset that is bought and sold!

Check out how @TheTileApp (mis)used @AutomateYouLife's information!

#NoCode #buildinpublic #automation #security #NotCool #privacy
VIDEO RELEASED 🤬🤬🤬

I'm angry, and you should be angry too. Here's why I threw out all my Tile Trackers, and won't be going back.

youtu.be/AIQm2Xcl9Q8
Are you aware of a #NoCode #lowcode platform that provides feature like threat assessment?

The feature need not be user facing, but could be a functionality that works under the hood.

Are you aware of any?

#security #programming #buildinpublic
@KIIARA Most importantly @KIIARA remember when you look down at the earth you’re walking on that it wasn’t built entirely in a night,the living surface is growing out of the ruins of passed lives,the experience of life fertilized the future.every body is composed from the same compost
@NeilRyanPierce @harshil1712 @n8n_io @ObamaAteMyPollo @ProductHunt Running the on-prem version of @n8n_io is an absolute must for anyone who is running local systems. Full automation of your environment with access to local data without shipping it to another country!

#buildinpublic #NoCode #security
In case you missed the presentation last week, here is a demonstration of some hardware that I put together to talk and listen directly with @n8n_io without needing to access the internet like most IoT devices.

#NoCode #buildinpublic #JNoT #Security
Have you heard about the Internet of Things, but without the "internet"?

@tephlondude showed us how he is building smart devices that don't need internet!

Watch the recording of his talk to learn how #JNoT was born 🐣
youtu.be/a_4h1fFuI5w
🧑‍💻 DAY LOG #28

🌐 Read about various #auth approaches that integrate with #ReactJS for a #SaaS

🔥 Implemented basics of #firebase into a project I'm starting

Share your #daylog!

#buildinpublic #coding #webdev #programming #webdesign #Software #security #Multitasking
@evacide I switched over to @Bitwarden a few years back and never regretted it for a second!

#NoCode #buildinpublic #security #password #passwords
It looks like @LastPass is getting some bad press today. I moved to @Bitwarden a number of years ago and #noregrets

#NoCode #buildinpublic #LastPass #password #security #OpenSource
Triage alerts 🚨, track investigations 🗒️, automatically search for indicators across thousands of endpoints 🔍, and respond to affected hosts 🚔 using free and open tools like @securityonion, @thehive_project, @n8n_io, and @velocidex:

link.medium.com/5uJZfPghkeb

#infosec #dfir
@saltcorns @tpflug @Yubico I ❤️ the concept of @Yubico keys & have several myself. Also ❤️ the idea of easy to configure @Yubico SSH auth for my @Raspberry_Pi installs & my on-prem @n8n_io systems.

Anyone out there who could help?

#NoCode #buildinpublic #automation #workflow #security #API
Lesson 16: Force Secured Connections

Require SSL/TLS connections for clients that are connecting to your #API endpoints so that client data is encrypted end to end.

#NoCode #buildinpublic #encryption #security #development #DevOps #SSL #TLS #certificates
Stuck at a roadblock with my other project so I may as well spend the evening getting to know @traefik better!

#NoCode #buildinpublic #proxy #security #OpenSource
@getlametric is a cool display and audio gadget but what in the world is is sending/receiving and to/from who? This is in 24 hours!

Time to put a sniffer on that thing!

#NoCode #buildinpublic #paranoid #security
Any service that is going to be internet facing MUST be secured SSL/TLS certificate. Otherwise, anyone along the way can listen in on your conversation!

Can't afford a certificate? @letsencrypt has your back!

#NoCode #buildinpublic #security #internet #network #Hacked
A user in the @n8n_io @discord community was asking how to set the hostname in the SSH credentials using information from a previous node.

Here is a quick tutorial on how to do just that:
t5n.xyz/setting-creden…

#NoCode #buildinpublic #SSH #tutorial #security
@Bitwarden has been a favourite tool of mine for a very long time and I had completely forgotten that it is #OpenSource! I've rectified that error and it is now on my list of self-hosted open tools:

notion.so/tephlon/bf7ebc…

#NoCode #buildinpublic #security #passwords
@nelnhf @instagram I personally am not a huge fan of the Face Unlock function since there are a number of easy ways to bypass it. I would rather use a combination of fingerprint and PIN combination.

#NoCode #buildinpublic #security #biometrics
@nelnhf @instagram I'm not an iPhone user so I didn't know that. If you are going to use the Face Unlock feature, then definitely combine it with a PIN.

#NoCode #buildinpublic #security #biometrics