Scott Helme (Page 15)

CSRF is (really) dead

A little while back I wrote a blog post about how "CSRF is dead". It focused on SameSite cookies, a powerful yet simple feature to protect your website against CSRF attacks. As powerful as it was, and as much as it will...

Free Post

EV

Gone forEVer!

Regular readers will know my view on EV certificates but in the last week there have been 2 very significant announcements from the 2 largest browser vendors in the world....

Thinking more about bots and whether we do enough

Free Post

Report URI

Thinking more about bots and whether we do enough

I've worked at some great companies during my career and worked alongside some great people too. Many of those I still keep in contact with and recently I...

Free Post

Security Headers

Security Headers Updates

I've just deployed a few changes to Security Headers to bring it up to date with recent changes in the industry. Here are the details and how they...

Maintaining state in a Cloudflare Worker

Free Post

Report URI

Maintaining state in a Cloudflare Worker

It's no secret that we use Cloudflare Workers extensively at Report URI and once you're using a Worker, you can keep adding more functionality to it....

Free Post

Hack Yourself First

The Hack Yourself First UK Tour now has Hotel Packages

Ticket sales are still open for the Hack Yourself First UK Tour and to make it even easier to attend, we're now offering Hotel Packages! -------------------------------------------------------------------------------- The HYF...

Free Post

Cloudflare Workers

Deprecating TLSv1.0 and TLSv1.1 gracefully with Cloudflare Workers

A lot has changed in the TLS ecosystem in just the last few years and and a huge drive towards deploying TLS has seen a surge in the adoption of...

Free Post

Let's Encrypt

Let's Encrypt to transition to ISRG root

Let's Encrypt have announced that on July 8th, 2019 they will begin issuing new certificates from their own intermediate CA and not their current cross-signed intermediate. Here'...

Free Post

Hack Yourself First

Hack Yourself First - UK Tour

I've been working with Troy Hunt on delivering Hack Yourself First, his 2-day hacking workshop, for a little over a year now and I'm really excited...

Alexa Top 1 Million Analysis - February 2019

Free Post

crawl

Alexa Top 1 Million Analysis - February 2019

It's a little late but here it is! The analysis of the Alexa Top 1 Million sites for February of 2019. We have good news, increased numbers, new...

Scott Helme

Hi, I'm Scott Helme, a Security Researcher, Entrepreneur and International Speaker. I'm the creator of Report URI and Security Headers, and I deliver world renowned training on Hacking and Encryption.

CSRF is (really) dead

Gone forEVer!

Thinking more about bots and whether we do enough

Security Headers Updates

Maintaining state in a Cloudflare Worker

The Hack Yourself First UK Tour now has Hotel Packages

Deprecating TLSv1.0 and TLSv1.1 gracefully with Cloudflare Workers

Let's Encrypt to transition to ISRG root

Hack Yourself First - UK Tour

Alexa Top 1 Million Analysis - February 2019

Upcoming Events

Cheat Sheets

Projects

Upcoming Events

Cheat Sheets

Projects

Follow