https://r0tbyt3.dev/tags/security/Recent content in Security on Jesus OsegueraHugoen-usSat, 01 Nov 2025 00:00:00 +0000https://r0tbyt3.dev/projects/botnet/Sat, 01 Nov 2025 00:00:00 +0000https://r0tbyt3.dev/projects/botnet/Overview Developed an educational botnet server with synchronized multi-client handling, remote shell execution, bidirectional file transfer, and modular command handlers for defensive and offensive cybersecurity demonstrations. Technologies: Python, socket programming, TCP/IP, threading Features Multi-client handling with synchronized connections Remote shell execution capabilities Bidirectional file transfer functionality Modular command handler architecture Details More details coming soon…https://r0tbyt3.dev/projects/domain-name-system-enumeration-tool/Sun, 01 Jun 2025 00:00:00 +0000https://r0tbyt3.dev/projects/domain-name-system-enumeration-tool/Overview Engineered a multi-threaded DNS reconnaissance tool processing 500-1,000 subdomains/minute with ThreadPoolExecutor (50 workers), implementing DNS enumeration capabilities including DNSSEC validation, and automated security pattern matching with comprehensive error handling. Technologies: Python, threading, concurrent.futures, dnspython Features Multi-threaded DNS processing (500-1,000 subdomains/minute) ThreadPoolExecutor with 50 workers for parallel processing DNSSEC validation Automated security pattern matching Comprehensive error handling Details More details coming soon…https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/access-control-lists-acls/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/access-control-lists-acls/Access control lists (ACLs) Access Control Lists - lists defining which users or systems are granted access to specific resources. Related Links: Attribute-based access control (ABAC) Capability-based access control OAuth OpenID Connect (OIDC) Role-based access control (RBAC)https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/api-security-best-practices/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/api-security-best-practices/API security best practices API Security Best Practices - techniques for securing APIs against common vulnerabilities and attacks. Related Links: Container security best practices CORS CSP Mitigation techniques OWASP risks Server securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/argon2/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/argon2/Argon2 Argon2 - memory-hard password hashing algorithm designed to resist GPU and brute-force attacks. Related Links: Bcrypt Hashing algorithms MD5 Scrypt SHA-1 SHA-256 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/attribute-based-access-control-abac/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/attribute-based-access-control-abac/Attribute-based access control (ABAC) Attribute-Based Access Control - authorization model granting access based on user attributes and policies. Related Links: Access control lists (ACLs) Capability-based access control OAuth OpenID Connect (OIDC) Role-based access control (RBAC)https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/Authentication Authentication - mechanisms for verifying identity including passwords, tokens, sessions, and multi-factor methods. Authentication and Authorization AuthN vs AuthZ Multi-factor authentication (MFA) Password-based authentication Session and Token Security Token-based authentication Related Links: Authorization Cryptography Web Securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/authentication-and-authorization/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/authentication-and-authorization/Authentication and Authorization Authentication and Authorization - mechanisms for verifying identity and controlling access to resources. Related Links: AuthN vs AuthZ Multi-factor authentication (MFA) Password-based authentication Session and Token Security Token-based authenticationhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/authn-vs-authz/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/authn-vs-authz/AuthN vs AuthZ AuthN vs AuthZ - distinction between authentication (who you are) and authorization (what you can do). Related Links: Authentication and Authorization Multi-factor authentication (MFA) Password-based authentication Session and Token Security Token-based authenticationhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/Authorization Authorization - mechanisms for controlling access to resources based on verified identity and assigned permissions. Access control lists (ACLs) Attribute-based access control (ABAC) Capability-based access control OAuth OpenID Connect (OIDC) Role-based access control (RBAC) Related Links: Authentication Cryptography Web Securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/bcrypt/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/bcrypt/Bcrypt Bcrypt - adaptive password hashing function designed to be computationally expensive to resist cracking. Related Links: Argon2 Hashing algorithms MD5 Scrypt SHA-1 SHA-256 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/capability-based-access-control/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/capability-based-access-control/Capability-based access control Capability-Based Access Control - security model where access rights are represented as unforgeable tokens. Related Links: Access control lists (ACLs) Attribute-based access control (ABAC) OAuth OpenID Connect (OIDC) Role-based access control (RBAC)https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/container-security-best-practices/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/container-security-best-practices/Container security best practices Container Security Best Practices - guidelines for securing Docker and container-based deployments. Related Links: API security best practices CORS CSP Mitigation techniques OWASP risks Server securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/cors/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/cors/CORS CORS - browser security mechanism controlling how web pages request resources from different origins. Related Links: API security best practices Container security best practices CSP Mitigation techniques OWASP risks Server securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/Cryptography Cryptography - cryptographic primitives and protocols used to protect data integrity, confidentiality, and authenticity. Argon2 Bcrypt Hashing algorithms MD5 Scrypt SHA-1 SHA-256 TLS Related Links: Authentication Authorization Web Securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/csp/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/csp/CSP Content Security Policy - HTTP security header restricting resource loading to prevent XSS attacks. Related Links: API security best practices Container security best practices CORS Mitigation techniques OWASP risks Server securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/hashing-algorithms/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/hashing-algorithms/Hashing algorithms Hashing Algorithms - functions mapping data of arbitrary size to fixed-size values for integrity and security. Related Links: Argon2 Bcrypt MD5 Scrypt SHA-1 SHA-256 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/md5/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/md5/MD5 MD5 - cryptographic hash function producing a 128-bit digest, now considered insecure for security use. Related Links: Argon2 Bcrypt Hashing algorithms Scrypt SHA-1 SHA-256 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/mitigation-techniques/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/mitigation-techniques/Mitigation techniques Mitigation Techniques - strategies for reducing the impact or likelihood of security vulnerabilities. Related Links: API security best practices Container security best practices CORS CSP OWASP risks Server securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/multi-factor-authentication-mfa/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/multi-factor-authentication-mfa/Multi-factor authentication (MFA) Multi-Factor Authentication - security process requiring two or more verification methods to authenticate users. Related Links: Authentication and Authorization AuthN vs AuthZ Password-based authentication Session and Token Security Token-based authenticationhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/oauth/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/oauth/OAuth OAuth - open standard authorization framework enabling secure delegated access to user resources. Related Links: Access control lists (ACLs) Attribute-based access control (ABAC) Capability-based access control OpenID Connect (OIDC) Role-based access control (RBAC)https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/openid-connect-oidc/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/openid-connect-oidc/OpenID Connect (OIDC) OpenID Connect - identity layer built on OAuth 2.0 for authentication and user identity verification. Related Links: Access control lists (ACLs) Attribute-based access control (ABAC) Capability-based access control OAuth Role-based access control (RBAC)https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/owasp-risks/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/owasp-risks/OWASP risks OWASP Risks - top ten web application security risks identified by the Open Web Application Security Project. Related Links: API security best practices Container security best practices CORS CSP Mitigation techniques Server securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/password-based-authentication/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/password-based-authentication/Password-based authentication Password-Based Authentication - authentication mechanism using secret credentials known only to the user. Related Links: Authentication and Authorization AuthN vs AuthZ Multi-factor authentication (MFA) Session and Token Security Token-based authenticationhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/role-based-access-control-rbac/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authorization/role-based-access-control-rbac/Role-based access control (RBAC) Role-Based Access Control - authorization model assigning permissions based on user roles within an organization. Related Links: Access control lists (ACLs) Attribute-based access control (ABAC) Capability-based access control OAuth OpenID Connect (OIDC)https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/scrypt/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/scrypt/Scrypt Scrypt - password hashing function designed to be memory-intensive to resist hardware-based attacks. Related Links: Argon2 Bcrypt Hashing algorithms MD5 SHA-1 SHA-256 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/Security Security - authentication, authorization, cryptography, and security best practices for backend systems. Authentication Authorization Cryptography Web Security Related Links: Backend Engineering Concurrency Databases Django DSA Python System Design Webhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/server-security/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/server-security/Server security Server Security - practices and configurations for protecting servers from unauthorized access and exploits. Related Links: API security best practices Container security best practices CORS CSP Mitigation techniques OWASP riskshttps://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/session-and-token-security/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/session-and-token-security/Session and Token Security Session and Token Security - best practices for securely managing user sessions and authentication tokens. Related Links: Authentication and Authorization AuthN vs AuthZ Multi-factor authentication (MFA) Password-based authentication Token-based authenticationhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/sha-1/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/sha-1/SHA-1 SHA-1 - cryptographic hash function producing a 160-bit digest, deprecated due to collision vulnerabilities. Related Links: Argon2 Bcrypt Hashing algorithms MD5 Scrypt SHA-256 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/sha-256/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/sha-256/SHA-256 SHA-256 - secure hash algorithm producing a 256-bit digest, widely used for data integrity and signatures. Related Links: Argon2 Bcrypt Hashing algorithms MD5 Scrypt SHA-1 TLShttps://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/tls/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/cryptography/tls/TLS TLS - cryptographic protocol providing secure communication over a network through encryption and certificates. Related Links: Argon2 Bcrypt Hashing algorithms MD5 Scrypt SHA-1 SHA-256https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/token-based-authentication/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/authentication/token-based-authentication/Token-based authentication Token-Based Authentication - authentication approach using digitally signed tokens instead of server-side sessions. Related Links: Authentication and Authorization AuthN vs AuthZ Multi-factor authentication (MFA) Password-based authentication Session and Token Securityhttps://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/Mon, 01 Jan 0001 00:00:00 +0000https://r0tbyt3.dev/wiki/content/backend-engineering/security/web-security/Web Security Web Security - browser and server-side protections against common web application vulnerabilities and attacks. API security best practices Container security best practices CORS CSP Mitigation techniques OWASP risks Server security Related Links: Authentication Authorization Cryptography