Free Post Report URI Deprecating XSS Reports A lot has changed in the browser landscape recently and we've seen all of the mainstream browsers move away from running their own XSS Auditor or XSS Filter....
Free Post tls Big HTTPS changes coming in Chrome Chrome has certainly been one of the main contributors towards the recent push to HTTPS online and without their contribution, I do find myself wondering how much progress would have...
Free Post crawl Top 1 Million Analysis - September 2019 Yes, it's that time of year again and the last 6+ months have flown by. Time for a look at the state of security in the Top 1...
Free Post CSP CSP nonces the easy way with Cloudflare Workers Everybody knows I'm a rather large fan of CSP and an even bigger fan of CSP reporting, but CSP can be hard. Part of my personal mission has...
Free Post Security Headers Security Headers Updates I've just deployed a few changes to Security Headers to bring it up to date with recent changes in the industry. Here are the details and how they...
Free Post crawl Alexa Top 1 Million Analysis - February 2019 It's a little late but here it is! The analysis of the Alexa Top 1 Million sites for February of 2019. We have good news, increased numbers, new...
Free Post HTTPS Here's how to do HTTPS with backwards compatibility I've seen this mentioned a few times now and I think it's time we had some solid facts on why this just isn't the...
Free Post CSP Magecart are coming for you, are you ready? We've seen a few notable news events this year along the same lines. Major websites have suffered serious breaches not because they were hacked, but because of a...
Free Post crawl Alexa Top 1 Million Analysis - August 2018 It's time! August 2018 represents the 7th time I've published a report of the Alexa Top 1 Million sites so let's get stuck in...
Free Post CSP XSS on etherscan.io I got a DM from a journalist called Jordan Pearson [https://twitter.com/neuwaves] this evening and what started out as a quick comment for an article turned into an...
Follow