Skip to content

Instantly share code, notes, and snippets.

@glenn-sorrentino

glenn-sorrentino/resilient-software-heuristics.md

Created November 29, 2023 19:36
Show Gist options
  • Save glenn-sorrentino/fc18af60df8e0d2fdcf046f11e7a2122 to your computer and use it in GitHub Desktop.
Save glenn-sorrentino/fc18af60df8e0d2fdcf046f11e7a2122 to your computer and use it in GitHub Desktop.
Download ZIP
Raw
resilient-software-heuristics.md

Resilient Software Heuristics

  1. How does it receive updates?
  2. Was it audited by an independent organization? Were all of the findings addressed?
    • Security
    • Accessibility
    • Usability
  3. What happens upon a hard reboot?
  4. Does it use a firewall? WAF?
  5. Does it employ intrusion detection measures?
  6. Does is use HTTPS? Do certificates automatically renew?
  7. Are the content security headers hardened?
  8. Does it deploy as an onion service?
  9. Does it use a sauteed onions domain?
  10. Is SSH enabled?
    • Do you use key or password authentication?
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment