public
Beating DNS-over-HTTPS & DNS-over-TLS
Follow up on further methods which could be used to defeat DNS-over-HTTPS and DNS-over-TLS.…
Sean Wright
Experienced application security engineer with an origin as a software developer. Primarily focused on web-based application security with a special interest in TLS and supply chain related subjects.
87 posts
•
public
public
DNS over TLS / DNS over HTTPS - Is it the privacy magic bullet?
Summary of how DNS-over-HTTPS and DNS-over-TLS can help with privacy, but only to a certain point.…
public
HTTPS For Non-Techies
A basic an non-technical introduction and explanation of HTTPS.…
public
The Need For HTTPS
A post attempting to explain why HTTPS is needed, as well as why it is important.…
public
A New Form of Authentication
So I was thinking through things last night and then I had an epiphany. What if
we try mimic client…
public
Emails, The Weak Link
Blog post about recent findings relating to using plain HTTP links within emails.…
public
Meltdown & Spectre
They both exploit critical vulnerabilities in modern day processors. If exploited successfully, a program would be able to read memory of another process or kernel.…
public
•
3 min read
•
Security, It's Not My Problem
> Who is going to attack us?
Those were the words ushered to me in my very first job in…
blog
•
Hello Ghost
So after having several frustrations with Blogger (after having decided to use
this as my starting platform [https://blog.sean-wright.…
public
Info Only
Discuss the importance of using HTTPS for integrity, and not only for confidentiality.…
public
Responsible Disclosure, Responsible Accountability
One of the most frustrating parts about finding and reporting security
vulnerabilities is dealing with companies and organisations who either…
Certificate Transparency, A Peek Into The Inside?
Discussion about how certificate transparency (CT) can be used by attackers to map an internal network.…