VIRTUAL
September 19, 2024
Beyond secrets detection: Self-discovering API key permissions and resources
Exposed secrets are a significant threat to organizations but secrets detection along is not enough. This webinar discusses a new approach that analyzes leaked keys to identify the resources and permissions associated with leaked credentials - without requiring usernames, passwords, or MFA tokens.
VIRTUAL
August 24, 2024
The hidden side of GitHub: Discovering the dangers of deleted data
Discover the hidden dangers lurking in GitHub repositories! This webinar will demonstrate how threat actors can access data from "deleted" commits, comments, and file uploads. Learn how these seemingly inaccessible data points can expose sensitive information, including live API keys, evidence of hacks, and copyright infringements.
VIRTUAL
May 16, 2024
Webinar: When [the} postman delivers secrets
Postman, the popular API testing tool, is exposing secrets for major cloud and SaaS providers. Our research estimates that Postman is leaking over 4000 live credentials right now. This webinar delves into the research and explores the reasons and risks associated with these leaks and offers practical solutions for securing your developer's usage of Postman.
VIRTUAL
April 4, 2024
Webinar: Understanding security canaries
What are security canaries and why are they essential for threat detection? You may be surprised to learn how many times there are and all the use cases. In this webinar, TruffleHog founder, Dylan Ayrey, takes a deep dive into security canaries' pivotal role in threat detection.
VIRTUAL
February 8, 2024
Webinar: API Key Rotation - How to Remediate Leaked Secrets
In this webinar, you will learn how to remediate leaked keys, manage key rotation, and handle platform-specific processes for the leading SaaS providers.
IN-PERSON
Sept. 26-27, 2024
Global AppSec US 2024
Visit the Truffle Security team at Booth S112 at the OWASP Global AppSec Conference on Thursday, September 26 or Friday, September 27. On Thursday, Joe Leon and Dylan Ayrey will be speaking on "Self-Discovering API Key Permissions and Resources." On Friday, Joe and Dylan will also give a talk on "Millions of Public Certificates are Reusing Old Private Keys."
IN-PERSON
August 3-8, 2024
Black Hat 2024
Come visit the Truffle Security team from August 3-8 at Booth 3005 at Black Hat 2024 in Las Vegas. Come by and grab some stickers and learn about the latest and greatest TruffleHog updates.
IN-PERSON
May 4-3, 2024
Truffle Security @BSides
Join the Truffle Security team for this two-day event to share technical and academic presentations that advance the education, and collaboration of the information security community.
IN-PERSON
April 24, 2024
OWASP Bay Area Meetup
Join us for an exciting evening of innovation and inspiration at our upcoming OWASP Bay Area meetup! Featured speakers: TruffleHog Founder Dylan Ayrey, Security researcher and engineer, Sam Curry, and Denis Smajlović, security consultant.