Good Faith Policy
be nice.
👉👈 🥺
Report 1 Feedback
- Qualitative feedback sent
- Executive summary
- Business impact // “so what?”
- Contextual impacts and remediations
- Order the vulnerabilities by severity
Topic Walthroughts
Challenge walkthroughs, cool things?
Bonus marks!!!
Today’s TL;DR
DevOps = Dev Oooops
- 💦 The exit of Waterfall SDLC approaches
- 🐜 CVEs
- Common Vulnerability Enumerations
- 🔍 SAST vs DAST
- Static/Dynamic Application Security Testing
- 🐳 Containerisation and Virtualisation 💻
More on Dev Ops
- Why make (your own) applications?
- 📈 stonks
- 🔒 fuzz
- 🩹 Improvements, fixes, …
- 💪 weird flex but ok
- What makes a website good?
- What makes a webapp good (dev ops)?
- the stuff before, plus even more
- s e k u r i t y
- Availability
- Reliability
- Scalability
tech for the ambitious one
How do I make a secure, but good app? - an example.
nginx, let’s encrypt, certbot, docker, caddy
trust issues? Good. Have zero trust.
SecOps
- SDN VPNs vs Browsing VPNs
- VPNs and anonymity. Do they work?
- VPNs and bandwidth. Bottlenecks?
- P2P SDNs? ZeroTier, Nebula, Tailscale, Hamachi?