AppSec Blog: Tag - hash

Top 25 Series - Rank 20 - Download of Code Without Integrity Check

Checking the integrity of code you download is important and has to be done not just for the initial download, but for updates as well. We will discuss the options to implement integrity checks correctly. Continue reading Top 25 Series - Rank 20 - Download of Code Without Integrity Check


How can I tell if my password is encrypted?

For most websites, we don't have the source code available. As a user, we more or less trust the site is doing "the right thing", or well, we just use a throw away password that we accept to be compromised. Sometimes, it is obvious. For example the site is sending you your password in the … Continue reading How can I tell if my password is encrypted?