Skip to content

Instantly share code, notes, and snippets.

@michiiii
michiiii / nginx-tls.conf
Created Mar 17, 2021 — forked from gavinhungry/nginx-tls.conf
Nginx SSL/TLS configuration for "A+" Qualys SSL Labs rating
View nginx-tls.conf
#
# Name: nginx-tls.conf
# Auth: Gavin Lloyd <gavinhungry@gmail.com>
# Desc: Nginx SSL/TLS configuration for "A+" Qualys SSL Labs rating
#
# Enables HTTP/2, PFS, HSTS and OCSP stapling. Configuration options not related
# to SSL/TLS are not included here.
#
# Additional tips:
#
@michiiii
michiiii / setupiisforsslperfectforwardsecrecy_v17.ps1
Created Mar 17, 2021 — forked from jbratu/setupiisforsslperfectforwardsecrecy_v17.ps1
Great powershell script for tightening HTTPS security on IIS and disabling insecure protocols and ciphers. Very useful on core installations.
View setupiisforsslperfectforwardsecrecy_v17.ps1
# Copyright 2019, Alexander Hass
# https://www.hass.de/content/setup-microsoft-windows-or-iis-ssl-perfect-forward-secrecy-and-tls-12
#
# After running this script the computer only supports:
# - TLS 1.2
#
# Version 3.0.1, see CHANGELOG.txt for changes.
Write-Host 'Configuring IIS with SSL/TLS Deployment Best Practices...'
Write-Host '--------------------------------------------------------------------------------'
View CVE-2020-35650.txt
Vulnerability Name: Multiple cross-site scripting (XSS) vulnerabilities in Uncanny Groups for LearnDash before v3.7
Registered: CVE-2020-35650
Discoverers:
Michael Ritter
Vendor of Product:
Uncanny Owl
Affected Product Code Base:
View CVE-2020-9439.txt
Vulnerability Name: Multiple cross-site scripting (XSS) vulnerabilities in Tin Canny Reporting for LearnDash
Registered: CVE-2020-9439
Discoverers:
Michael Ritter
Vendor of Product:
Uncanny Owl
Affected Product Code Base: