Scott Helme

Google update their Minimum Viable Secure Product

Back in 2021, Google launched, alongside other organisations, a new security baseline for products known as the Minimum Viable Secure Product. Now, 2 years later, they've released an update to...

Free Post

Report URI

Report URI Penetration Test 2023

It's that time of year again at Report URI, right before we start getting festive, that we have our annual penetration test and 2023 is going to be our fourth...

Free Post

Report URI

Report URI: A week in numbers! (2023 edition)

I simply can't believe that Report URI has now processed 1,500,000,000,000+ reports, which is unreal! That's over one trillion, five hundred billion reports... 🤯 This tiny little...

Free Post

A Balanced Approach: New Security Headers Grading Criteria

The Security Headers grading criteria is something that doesn't change often, but when it does, there's a good reason behind the change. In this blog, I will outline the new...

Free Post

QWAC

What the QWAC?!

Almost 2 years on from the last time I wrote about QWACs, I'm sadly not here to tell you that things have gone well since then. In fact, I'm actually...

Free Post

UniFi

Holiday fun with my UniFi G4 Doorbell Pro!

I love having smart devices around my house, and every now and then, you can have a little bit of fun with them too! Here's what it currently looks like...

Sockets - Under The Hood: Understanding Truncated Request Behaviour

Free Post

Report URI

Sockets - Under The Hood: Understanding Truncated Request Behaviour

I'm thoroughly pleased to be able to say that I finally understand the issue that's been bothering me on Report URI for a few weeks now, and this is the...

Processing Truncated Requests? A PHP Debugging Deep Dive

Free Post

Report URI

Processing Truncated Requests? A PHP Debugging Deep Dive

In my previous blog post, I came across a bug in Report URI that took some effort to debug and fully understand before I could fix it. Whilst I'd identified...

Free Post

Report URI

Unravelling The Mystery Of Truncated POST Requests On Report URI

This blog post is going to detail what was a pretty lengthy journey for me in debugging an elusive issue that started to occur on Report URI recently! It required...

Do breached sites take security seriously?

Free Post

Security Headers

Do breached sites take security seriously?

Over the weekend, I saw a tweet from Troy Hunt who posed a little project idea. Having heaps of spare time... I thought I'd take on the challenge and see...

Scott Helme

Hi, I'm Scott Helme, a Security Researcher, Entrepreneur and International Speaker. I'm the creator of Report URI and Security Headers, and I deliver world renowned training on Hacking and Encryption.

Google update their Minimum Viable Secure Product

Report URI Penetration Test 2023

Report URI: A week in numbers! (2023 edition)

A Balanced Approach: New Security Headers Grading Criteria

What the QWAC?!

Holiday fun with my UniFi G4 Doorbell Pro!

Sockets - Under The Hood: Understanding Truncated Request Behaviour

Processing Truncated Requests? A PHP Debugging Deep Dive

Unravelling The Mystery Of Truncated POST Requests On Report URI

Do breached sites take security seriously?

Upcoming Events

Cheat Sheets

Projects

Upcoming Events

Cheat Sheets

Projects

Follow