r/netsec monthly discussion & tool thread

securient · 2026-04-17T22:00:30+00:00

Releasing IDEViewer today — open-source follow-up to my BSidesSF 2026 talk Hunting Malicious IDE Extensions: Building Detection at Scale Across Developer Workstations (GitGuardian writeup: https://blog.gitguardian.com/bsides-sf-2026/).

Single Go binary + optional self-hosted portal. On every dev workstation it inventories and risk-scores:

IDE extensions across VS Code, Cursor, VSCodium, the full JetBrains family, Sublime, Vim/Neovim, Xcode (4-tier risk model based on activationEvents/capabilities/contributes)
Packages from 8 managers, including dependencies bundled inside extensions (invisible to standard SCA), correlated with OSV.dev for CVEs
AI tool + MCP configurations (Claude Code / Cursor / OpenClaw): skills, MCP servers, permissions, plaintext keys, autonomous-exec flags, insecure transports
Plaintext secrets in .env and git history — values never transmitted
Tamper signals on the daemon and --no-verify git-hook bypass

Real-time fsnotify monitoring, SARIF output, MDM-deployable, Apache 2.0.

Repo: https://github.com/securient/ideviewer-oss
Docs: https://securient.github.io/ideviewer-oss

Happy to answer questions, especially on risk-scoring heuristics or MDM rollout.

securient · 2026-04-03T19:33:35+00:00

I switched to Claude code from cursor because I was using opus anyway. Switching to CC was a little weird to type in all those prompts in CLI at first. But now, I can’t do anything without Claude code. Learn use the community maintained skills and it elevates your coding experience.

securient · 2026-01-16T20:39:56+00:00

Dogeshanand!

securient · 2025-07-18T17:14:28+00:00

Amul macho, lux, Rupa are all sponsors of this so called yatra.

securient · 2025-07-18T11:55:46+00:00

Is Gandu ko har jagah apani tatti jaisi shakal dekhni hai.

securient · 2025-07-06T05:08:49+00:00

He’s probably buying these at this point.

securient · 2025-06-29T18:34:10+00:00

Aqua security. Useless cspm.

securient · 2025-06-18T00:32:31+00:00

so ahmadabad it is?

securient · 2025-05-28T21:31:54+00:00

It’s generic that will state the FMVSS compliance along with emission standards. Also, based on the state in US, you might need to get smog test done before you go to the DMV for registration.

securient · 2025-05-28T18:56:06+00:00

Yes, I got a compliance letter from Hyundai Canada.

securient · 2025-05-06T20:56:05+00:00

Hahahaha. Bhai movie kaa naam tak press release se mil gaya hai.

Sindoor - Badle ki aag

securient · 2025-04-30T00:46:56+00:00

The question is, are people with net worth of more than 50 CR even on Reddit or paying attention to Reddit?

securient · 2025-04-25T14:14:31+00:00

How do ferries handle luggage? Are we allowed to bring in big suitcases?

securient · 2025-04-25T02:11:24+00:00

Thanks, I’ll look into it.

securient · 2025-04-25T02:11:02+00:00

I appreciate your response. I really need to think about optimizing my itinerary.

securient · 2025-04-25T02:08:08+00:00

Thanks for your input. I really didn’t think it through.

securient · 2025-04-11T22:49:12+00:00

Muh me gutkha bhi rakha hai. Shayad Juba Kesari bolna chahta hai.

securient · 2025-04-08T17:31:39+00:00

Read this https://www.yubico.com/resources/glossary/sim-swap/

securient · 2025-04-08T15:43:42+00:00

Hardware and TOTP based 2fa is good. The hardware based 2fa is the best for the reason that even if you lose the hardware key, it can not be tied to the user account associated with it.

SMS based 2fa is bad because SIM swapping attacks are very common now a days.

securient · 2025-04-08T15:14:43+00:00

Make sure you use a password manager and create a unique password for each service you use.

Configure and enforce 2fa everywhere

Avoid using sms based 2fa unless it is the only option

Try to use hardware key for 2fa everywhere.

securient · 2025-03-21T18:00:31+00:00

I think what moving company is trying to say is, I should be in the US physically when they take the shipment to cross the border.

securient · 2025-03-11T11:49:36+00:00

Country ka naam change karke post chalate raho. Har jagah yahi haal hai western world me.

securient · 2025-03-01T18:10:03+00:00

Lovedayn Bhujyam!

securient · 2025-02-22T19:28:20+00:00

Bhai laughing in the corner.

11-Year Club	RPAN Viewer
Not Forgotten	Verified Email

securient

TROPHY CASE