Blue team

Secrets detection

Red team
Green team
Purple team
Indigo team
Contact

Initializing search

Blue team

Going places
Going places
- Blue team @SOC
- Blue team for dev
  Blue team for dev
  - Best practices for securing web applications
    
    Best practices for securing web applications
    
    Putting your code in a digital straitjacket
    
    Secure coding guidelines
    
    Where an app’s security is only as strong as the sketchiest library
    
    TLS/SSL hardening
    
    Database Security
    
    Preventing and handling API breaches
    
    Security testing for development
    
    Security testing for development
    
    Security testing for development
    
    Code reviews
    
    Configuration analysis
    
    Database vulnerability scanning
    
    Architecture & design validation
    
    Infrastructure as code scanning
    
    Network vulnerability scanning
    
    Software composition analysis (SCA)
    
    Secrets detection
    
    Web service scanning
    
    Source code analysis
    
    Web application scanning
  - Development security operations best practices
- Blue team @Home
- Bulletproofing servers
- Honeytech for humans
- Stormforge
- Current affairs

Secrets detection¶

Find accidentally committed credentials
Scan git history
Prevent secret leakage

Tools:

GitGuardian
TruffleHog
Gitleaks

2025-09-24 12:13

© Copyright 2025, TyMyrddin.

Created using Sphinx 7.2.6. and Sphinx-Immaterial

Made with love in the Unseen University, 2025, with a forest garden fostered by /ut7