The Deprecation of HTTP

Along time ago in a galaxy far, far away… HTTP was born. After a while, somebody decided they wanted to use the Internet to buy things. Someone else decided they wanted to send secret business emails. Another person went online and didn’t want people seeing what they browse in their spare time. So someone decided to add the letter S to the end of HTTP and everyone was happy.

Nowadays, everything takes place online. Bank accounts can be accessed, taxes can be filed, one quick click and you’ve sent a message to all your friends or co-workers. All that power behind a password. If you are like year-ago me, you have a roster of 3 or 4 passwords that you use on all these sites. No one can manage 30 different passwords for 30 different sites (unless they use management software like LastPass), so we are often left with our bank account having the same password as our email, or our Facebook password identical to our work password. Securing these passwords suddenly becomes priority #1.

Continue reading “The Deprecation of HTTP”

Encode/Decode base64 Strings using C#.NET

When testing systems, it can be useful to see what’s hidden behind a base64 string. Maybe we are running a secuirty audit and come across an HTTP endpoint using Basic Authentication  :O and we want to illustrate to those that don’t understand the risk and why it should be changed (well, it looks encrypted to a non-technical person…). You might need this for any number of reasons. Maybe you just want to try it for knowledge’s sake. Lucky for us, .NET has wonderful built in methods for working with base64.

Continue reading “Encode/Decode base64 Strings using C#.NET”

Create a website or blog at WordPress.com

Up ↑