Guess who forgot to do a newsletter last week?
Cool file upload attack to get access to SSH unauthenticated.
Neat tool to MITM an iOS device. The code is worth a look.
There is a new release of a (new to me) tool to test SAML implementations.
More cool HTTP2 vulnerabilities exploited.
TLS 1.0 and 1.1 are formally deprecated. These become High findings on reports now.
Retire.js, one of my favorite tools, has been updated.
And finally, spend your Sunday patching OpenSSL.
Have a secure week, everyone.