HackerTrans
TopNewTrendsCommentsPastAskShowJobs

snagg

no profile record

Submissions

Harnesses and post-training close the open-weight bug-finding gap

vincenzoiozzo.com
3 points·by snagg·2 เดือนที่ผ่านมา·0 comments

The AlphaGo moment for vulnerability research?

vincenzoiozzo.com
2 points·by snagg·3 เดือนที่ผ่านมา·0 comments

Deepfake Impersonation Attacks (Part 1): Anatomy of Modern Deepfakes

slashid.com
1 points·by snagg·4 เดือนที่ผ่านมา·0 comments

Protecting third-party credentials: Credential Tokenzation

slashid.com
2 points·by snagg·2 ปีที่แล้ว·0 comments

Secure API and M2M Access with OAuth2 Client Credentials

slashid.com
2 points·by snagg·2 ปีที่แล้ว·0 comments

Building a globally distributed Identity Platform

slashid.com
3 points·by snagg·2 ปีที่แล้ว·0 comments

Passkeys Adoption Trends: Survey from Large Deployments

slashid.com
1 points·by snagg·2 ปีที่แล้ว·0 comments

Single Sign-On Implementation: Security Issues and Best Practices

slashid.com
2 points·by snagg·3 ปีที่แล้ว·0 comments

Exploiting Undocumented API to Regenerate Google Service Cookies

cloudsek.com
47 points·by snagg·3 ปีที่แล้ว·7 comments

GPT in 500 Lines of SQL

explainextended.com
5 points·by snagg·3 ปีที่แล้ว·0 comments

Firebase Authentication User Enumeration Bug

slashid.com
4 points·by snagg·3 ปีที่แล้ว·1 comments

Show HN: OpenAPI OAuth 2.0 scopes enforcement for APIs

github.com
7 points·by snagg·3 ปีที่แล้ว·0 comments

OAuth 2.0 Scopes enforcement on APIs

slashid.dev
2 points·by snagg·3 ปีที่แล้ว·0 comments

Rate Limiting for Large-Scale, Distributed Applications Using GCRA

slashid.dev
5 points·by snagg·3 ปีที่แล้ว·0 comments

To Schnorr and Beyond

blog.cryptographyengineering.com
2 points·by snagg·3 ปีที่แล้ว·0 comments

Context-Aware Authentication

slashid.dev
2 points·by snagg·3 ปีที่แล้ว·0 comments

On the Future of Cloud Services and BYOC

jack-vanlightly.com
2 points·by snagg·3 ปีที่แล้ว·0 comments

Back End Authentication and Authorization Patterns

slashid.dev
1 points·by snagg·3 ปีที่แล้ว·0 comments

Getting RCE in Chrome with incorrect side effect in the JIT compiler

github.blog
1 points·by snagg·3 ปีที่แล้ว·0 comments

NSA, FBI, and CISA Release Cybersecurity Information Sheet on Deepfake Threats

cisa.gov
167 points·by snagg·3 ปีที่แล้ว·179 comments

comments

snagg
·2 ปีที่แล้ว·discuss
Hey,

Co-founder of SlashID here (one of the companies mentioned above). I think we have exactly what you are looking for:

https://www.slashid.dev/blog/anonymous-users/

https://developer.slashid.dev/docs/access/concepts/anonymous...

Hit me up if you want to chat more: [email protected]
snagg
·3 ปีที่แล้ว·discuss
Worth noting that implementing FIDO2/Passkeys is more challenging than it looks both from a UX standpoint and from a threat modeling standpoint. We tried to cover some of this in a blog post, in case anybody is interested: https://www.slashid.dev/blog/passkeys-security-implementatio...
snagg
·3 ปีที่แล้ว·discuss
We are big proponent of app-layer encryption as well. We wrote extensively about how we do it for our specific use case: https://www.slashid.dev/blog/app-layer-encryption/
snagg
·3 ปีที่แล้ว·discuss
Hi,

sorry for the late reply, just saw this. Do you mean to have certain pages public while others are private?

If so, yes. You can make login optional (using the slashID.forceLogin parameter. See here: https://github.com/slashid/docusaurus-slashid-login/blob/mai...) and restrict certain pages to only logged-in users. You can also use user groups/roles to further segment access to pages (https://www.slashid.dev/blog/groups-react/).

To get the slashID.orgID parameter for the theme you can sign-up here: https://console.slashid.dev/signup

If you send me an email at [email protected] and we can add you to our Slack in case you have any issues with it.