https://mytty.org/tags/tool/ Recent content in Tool on mytty Hugo -- gohugo.io en Except where otherwise noted, content on this site is created by Richard Sammet and<br> licensed under a <a href=http://creativecommons.org/licenses/by/4.0/>Creative Commons Attribution 4.0 International License</a>. Sat, 06 Apr 2019 11:32:33 +0000 https://mytty.org/posts/dockerinoz/ Sat, 06 Apr 2019 11:32:33 +0000 https://mytty.org/posts/dockerinoz/ <h3 id="dockerinoz-simple-dockerfile-security-best-practices-verification">dockerinoz - simple Dockerfile (security) best practices verification</h3> <p><strong>dockerinoz</strong> is a very small and simple tool which allows you to verify the content of Dockerfiles against a given best practice. It&rsquo;s nothing more than a fancy grep using a bit more than just simple regular expressions. This approach allows for <em>very</em> quick verifications which is especially important when implementing <strong>dockerinoz</strong> into your build pipeline. It also makes <strong>dockerinoz</strong> super easy to modify and extend - especially as the rules are just regular expressions in a json file (rules.json).</p> https://mytty.org/posts/apatf/ Sun, 03 Mar 2019 17:10:26 +0000 https://mytty.org/posts/apatf/ <h3 id="levenshtein-distance-what">Levenshtein distance what?</h3> <p>If you work or are just interested in cyber security you will have most likely encountered situations in which you would have loved to be able to automatically identify the percentage wise difference of two files or strings. A good example is a login or error page check. Imagine you are fuzzing a web application and you try to differentiate a successful injection from an error page.</p>