%term

How GitGuardian and Delinea Solve Improper Offboarding of NHIs at Scale

Aug 19, 2025 By Soujanya Ain In GitGuardian

Learn how GitGuardian and Delinea solve the growing problem of improper offboarding for Non-Human Identities (NHIs). Discover why orphaned secrets are a top security risk and how to automate their lifecycle management.

Read Post

GitGuardian

Read more about How GitGuardian and Delinea Solve Improper Offboarding of NHIs at Scale

Laravel APP_KEY Leaks Lead to RCE: GitGuardian + Synacktiv Reveal Massive Threat

Aug 19, 2025 By GitGuardian In GitGuardian

In this video, cybersecurity researcher Guillaume Valadon of GitGuardian breaks down how exposed Laravel APP_KEYs on GitHub can lead to full Remote Code Execution (RCE) in real-world applications. Working in collaboration with Synacktiv, the team uncovered 260,000 exposed keys, validated 600+ vulnerable apps, and revealed that over 35% of leaks also exposed critical credentials like database passwords, cloud storage tokens, and API keys.

View Video

GitGuardian

Read more about Laravel APP_KEY Leaks Lead to RCE: GitGuardian + Synacktiv Reveal Massive Threat

Snowflake on why leaked secrets make DevOps suffer and how to deal with this #NHI #secrets #devops

Aug 14, 2025 By GitGuardian In GitGuardian

View Video

GitGuardian

Read more about Snowflake on why leaked secrets make DevOps suffer and how to deal with this #NHI #secrets #devops

Bring Your Own Source: Plug GitGuardian into Any Workflow in Minutes

Aug 13, 2025 By Soujanya Ain In GitGuardian

Discover how GitGuardian's "Bring Your Own Source" initiative enables security teams to extend secrets detection beyond code repositories, leveraging custom integrations to eliminate a significant hidden attack surface.

Read Post

GitGuardian

Read more about Bring Your Own Source: Plug GitGuardian into Any Workflow in Minutes

How to Securely Access AWS from your EKS Cluster

Aug 11, 2025 By Tiexin Guo In GitGuardian

Discover EKS Pod Identity Association—the modern, secure way to grant AWS permissions without the operational overhead of OIDC providers. No more duplicated IAM roles across clusters, no more trust policy updates every time you scale.

Read Post

GitGuardian

Read more about How to Securely Access AWS from your EKS Cluster

Passwords, Resilience, And Being Human: Working Together For A Brighter Future At BSides Las Vegas 2025

Aug 8, 2025 By Dwayne McDaniel In GitGuardian

Dive into insights from BSides Las Vegas 2025: how identity hygiene, human ecosystems, structural resilience, and unpredictability define modern defenses.

Read Post

GitGuardian

Read more about Passwords, Resilience, And Being Human: Working Together For A Brighter Future At BSides Las Vegas 2025

Probably Secure: A Look At The Security Concerns Of Deterministic Vs Probabilistic Systems

Aug 7, 2025 By Dwayne McDaniel In GitGuardian

Learn why deterministic security remains essential in an AI-driven world and how GitGuardian combines probability and proof for safe, auditable development.

Read Post

GitGuardian

Read more about Probably Secure: A Look At The Security Concerns Of Deterministic Vs Probabilistic Systems

The Promise and Pitfalls of Ephemeral Identities

Aug 6, 2025 By Dan Kaplan In GitGuardian

Short-lived credentials reduce exposure – but they aren’t secure by default. Here’s what ephemeral identity gets right, and where it can fail.

Read Post

GitGuardian

Read more about The Promise and Pitfalls of Ephemeral Identities

The Identity Revolution: How AI Agents Are Reshaping Security Architecture

Aug 4, 2025 By Soujanya Ain In GitGuardian

Read key insights from GitGuardian SecDays Virtual 2025 on securing the future of autonomous AI agents.

Read Post

GitGuardian

Read more about The Identity Revolution: How AI Agents Are Reshaping Security Architecture

Symmetric Cryptography in Practice: A Developer's Guide to Key Management

Jul 31, 2025 By Gaetan Ferry In GitGuardian

Symmetric cryptography powers everything from HTTPS to JWT tokens, but key management remains a significant challenge. This developer guide covers three critical use cases—session keys, self-use keys, and pre-shared keys—with practical strategies for secure generation, rotation, and storage.

Read Post

GitGuardian

Read more about Symmetric Cryptography in Practice: A Developer's Guide to Key Management

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

How GitGuardian and Delinea Solve Improper Offboarding of NHIs at Scale

Laravel APP_KEY Leaks Lead to RCE: GitGuardian + Synacktiv Reveal Massive Threat

Snowflake on why leaked secrets make DevOps suffer and how to deal with this #NHI #secrets #devops

Bring Your Own Source: Plug GitGuardian into Any Workflow in Minutes

How to Securely Access AWS from your EKS Cluster

Passwords, Resilience, And Being Human: Working Together For A Brighter Future At BSides Las Vegas 2025

Probably Secure: A Look At The Security Concerns Of Deterministic Vs Probabilistic Systems

The Promise and Pitfalls of Ephemeral Identities

The Identity Revolution: How AI Agents Are Reshaping Security Architecture

Symmetric Cryptography in Practice: A Developer's Guide to Key Management

Monthly Archive

Follow Us