About half of network pentesting is finding the keys in the file system. Way too often they are in code repos.
It’s good that this is a free service. Things are getting like unencrypted backups were in the nineties. Half of data breaches on DataLossDB were because of them. Once LTO-4 made tapes encrypted by default (instead of a paid-for add-on,) it turned the whole industry around.
About half of network pentesting is finding the keys in the file system. Way too often they are in code repos.
It’s good that this is a free service. Things are getting like unencrypted backups were in the nineties. Half of data breaches on DataLossDB were because of them. Once LTO-4 made tapes encrypted by default (instead of a paid-for add-on,) it turned the whole industry around.