Compare commits
17 Commits
| Author | SHA1 | Date |
|---|---|---|
 Ryan Heywood
|
8171d2a889
|
|
|
Ryan Heywood
|
d3378425b8
|
|
|
Ryan Heywood
|
0a592aafeb
|
|
 Anton Livaja
|
6a298f7abc
|
|
|
Anton Livaja
|
935ae2aa01
|
|
|
Anton Livaja
|
49d18d4226
|
|
|
Anton Livaja
|
35a33d681b
|
|
|
Anton Livaja
|
705c87ab12
|
|
|
Anton Livaja
|
c57925b3f4
|
|
|
Ryan Heywood
|
760559843d
|
|
|
Anton Livaja
|
3a705aae2b
|
|
|
Anton Livaja
|
7b737dd834
|
|
|
Anton Livaja
|
c63e566a2d
|
|
 Lance Vick
|
561761f581
|
|
|
Lance Vick
|
2d4f2453e9
|
|
|
Anton Livaja
|
6a4a2927e1
|
|
|
Anton Livaja
|
7089ef4305
|
|
|
@ -21,9 +21,10 @@
|
|||
title: Distrust
|
||||
email: lance@distrust.co
|
||||
description: >- # this means to ignore newlines until "baseurl:"
|
||||
Trust Nothing
|
||||
Understand and mitigate security threats others won't see coming.
|
||||
baseurl: "" # the subpath of your site, e.g. /blog
|
||||
url: "https://distrust.co" # the base hostname & protocol for your site, e.g. http://example.com
|
||||
banner: "https://distrust.co/assets/base/distrust-logo.png"
|
||||
|
||||
header_pages:
|
||||
- index.md
|
||||
|
|
@ -35,7 +36,7 @@ header_pages:
|
|||
style: dark # dark (default), light or hacker
|
||||
listen_for_clients_preferred_style: false # false (default) or true
|
||||
|
||||
footer: '2023 Distrust, LLC'
|
||||
footer: '2024 Distrust, LLC'
|
||||
|
||||
# Build settings
|
||||
theme: jekyll-theme-console
|
||||
|
|
|
|||
|
|
@ -6,38 +6,94 @@
|
|||
<link rel="icon" type="image/png" sizes="96x96" href="/assets/favicons/favicon-96x96.png">
|
||||
<link rel="icon" type="image/png" sizes="16x16" href="/assets/favicons/favicon-16x16.png">
|
||||
<title>{{ page.title }}</title>
|
||||
<meta content="{{ site.title }}" property="og:site_name" />
|
||||
|
||||
{% if page.robots %}
|
||||
<meta name="robots" content="{{page.robots}}" />
|
||||
{% if page.noindex %}
|
||||
<meta name="robots" content="noindex" />
|
||||
{% endif %} {% if page.title %}
|
||||
<meta content="{{ page.title }}" property="og:title" />
|
||||
<meta content="article" property="og:type" />
|
||||
{% else %}
|
||||
<meta content="{{ site.banner }}" property="og:image" />
|
||||
<meta content="{{ site.title }}" property="og:title" />
|
||||
<meta content="website" property="og:type" />
|
||||
{% endif %} {% if page.summary %}
|
||||
<meta content="{{ page.summary }}" property="og:description" />
|
||||
{% else %}
|
||||
<meta content="{{ site.description }}" property="og:description" />
|
||||
{% endif %} {% if page.url %}
|
||||
<meta content="{{ site.url }}{{ page.url }}" property="og:url" />
|
||||
{% endif %} {% if page.date %}
|
||||
<meta
|
||||
content="{{ page.date | date_to_xmlschema }}"
|
||||
property="article:published_time"
|
||||
/>
|
||||
<meta content="{{ site.url }}/about/" property="article:author" />
|
||||
{% endif %} {% if page.thumbnail %}
|
||||
<meta content="{{ site.url }}{{ page.thumbnail }}" property="og:image" />
|
||||
{% endif %} {% if page.categories %} {% for category in page.categories
|
||||
limit:1 %}
|
||||
<meta content="{{ category }}" property="article:section" />
|
||||
{% endfor %} {% endif %} {% if page.tags %} {% for tag in page.tags %}
|
||||
<meta content="{{ tag }}" property="article:tag" />
|
||||
{% endfor %} {% endif %}
|
||||
|
||||
<!-- Twitter Cards -->
|
||||
<meta name="twitter:card" content="summary" />
|
||||
<!--<meta name="twitter:site" content="@{{ site.share.twitter_username }}" />-->
|
||||
<!--<meta name="twitter:creator" content="@{{ site.share.twitter_username }}" />-->
|
||||
|
||||
{% if page.title %}
|
||||
<meta name="twitter:title" content="{{ page.title }}" />
|
||||
{% else %}
|
||||
<meta name="twitter:title" content="{{ site.title }}" />
|
||||
{% endif %}
|
||||
|
||||
<link rel="stylesheet" type="text/css" href="{{ "/assets/main.css" | relative_url }}">
|
||||
<link rel="stylesheet" type="text/css" href="{{ "/assets/main-dark.css" | relative_url }}">
|
||||
{% if page.url %}
|
||||
<meta name="twitter:url" content="{{ site.url }}{{ page.url }}" />
|
||||
{% endif %} {% if page.summary %}
|
||||
<meta name="twitter:description" content="{{ page.summary }}" />
|
||||
{% else %}
|
||||
<meta name="twitter:description" content="{{ site.description }}" />
|
||||
{% endif %} {% if page.header-img %}
|
||||
<meta
|
||||
name="twitter:image:src"
|
||||
content="{{ site.url }}{{ page.thumbnail }}"
|
||||
/>
|
||||
{% endif %}
|
||||
|
||||
<!-- "Really, there is nothing interesting to see here. It is a static website. -->
|
||||
<!-- Here is the terraform code that deployed it, and here is the site source repo. -->
|
||||
<!-- If you find anything interesting or want to talk to us, reach out via our /contact page!" -->
|
||||
<!-- https://git.distrust.co/public/stack -->
|
||||
<!-- https://git.distrust.co/public/website -->
|
||||
|
||||
<!-- mobile menu content -->
|
||||
<div class="menu-content" style="display: none">
|
||||
<div class="inner-menu-content">
|
||||
<div>
|
||||
<a href="/index.html">Home</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/about.html">About</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/services.html">Services</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/tools.html">Tools</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/contact.html">Contact</a>
|
||||
</div>
|
||||
{% if page.robots %}
|
||||
<meta name="robots" content="{{page.robots}}" />
|
||||
{% endif %}
|
||||
|
||||
<link rel="stylesheet" type="text/css" href="{{ "/assets/main.css" | relative_url }}">
|
||||
<link rel="stylesheet" type="text/css" href="{{ "/assets/main-dark.css" | relative_url }}">
|
||||
|
||||
<!-- "Really, there is nothing interesting to see here. It is a static website. -->
|
||||
<!-- Here is the terraform code that deployed it, and here is the site source repo. -->
|
||||
<!-- If you find anything interesting or want to talk to us, reach out via our /contact page!" -->
|
||||
<!-- https://git.distrust.co/public/stack -->
|
||||
<!-- https://git.distrust.co/public/website -->
|
||||
<!-- mobile menu content -->
|
||||
|
||||
<div class="menu-content" style="display: none">
|
||||
<div class="inner-menu-content">
|
||||
<div>
|
||||
<a href="/index.html">Home</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/about.html">About</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/services.html">Services</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/tools.html">Tools</a>
|
||||
</div>
|
||||
<div>
|
||||
<a href="/contact.html">Contact</a>
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
</head>
|
||||
|
|
|
|||
|
|
@ -9,6 +9,15 @@
|
|||
{%- include header.html -%}
|
||||
|
||||
<main>
|
||||
<section>
|
||||
<h2>About Distrust</h2>
|
||||
<p>Distrust was founded in order to improve the security, privacy and freedom of individuals and organizations and promote principles of Open Source software worldwide. We specialize in helping organizations reduce risk through a holistic first principles approach rather than simply checking boxes according to often outdated "best practices".
|
||||
</p>
|
||||
<p>Close collaboration with our clients allows us to attain a deep understanding of technology stacks which we use to help teams refine threat models and ensure that the mitigating controls being used establish a reasonable level of security accordingly. We do this by offering variety of services which are tailored to fit the client needs, ranging across penetration tests, secure code review, threat modelling, system architecture design, supply chain security, infrastructure hardening, and more. One of our specialties is designing secure systems for management of cryptographic material, especially in the context of blockchains.
|
||||
</p>
|
||||
<p>Our clients are varied, many of them from high risk areas such as financial institutions, blockchain companies managing large quantities of cryptocurrency and electrical grid operators to name a few. We proudly continue to support such organizations, and use the knowledge we have attained to aid all our clients in achieving a better security posture.</p>
|
||||
</section>
|
||||
|
||||
<section>
|
||||
<h2>Approach</h2>
|
||||
<p>Like most security firms, we often start relationships with full stack audits. We also have enough experience in this industry to admit another firm will find bugs we missed, and vice versa. Our true goal in audits is to understand your threat model and find a path to fundamentally remove entire classes of relevant attack surface.</p>
|
||||
|
|
@ -17,13 +26,13 @@
|
|||
<li>Can your Google Authenticator codes be phished?</li>
|
||||
<li>Can your SMS 2FA solution be SIM Swapped?</li>
|
||||
<li>Can someone tamper with your Git repos or CI/CD systems?</li>
|
||||
<li>Would it be profitable for someone to buy a $50,000 0day to compromise employee devices?</li>
|
||||
<li>Would it be profitable for someone to buy a $50,000 0day to compromise an employee devices?</li>
|
||||
<li>What happens when the FedEx guy leaves a tampered USB C cable on a conference table?</li>
|
||||
<li>Who reviews the code of your third party dependencies?</li>
|
||||
<li>What happens when your IT administrator is compromised? Or a production engineer?</li>
|
||||
<li>Can a change in local political landscape fundamentally halt your business?</li>
|
||||
<li>Can someone buy a server next to yours and steal your secrets via a side channel attack?</li>
|
||||
<li>How do know the offline laptop with the keys to the kingdom has not been tampered with?</li>
|
||||
<li>How do you know the offline laptop with the keys to the kingdom has not been tampered with?</li>
|
||||
<li>Do you have a plan for <i>when</i> your production systems are compromised?</li>
|
||||
</ul>
|
||||
<br />
|
||||
|
|
@ -42,7 +51,7 @@
|
|||
<ul>
|
||||
<li>We will never ask you to give us access to production systems or have any power over your org.</li>
|
||||
<li>Anyone with access to significant value is at personal risk. We teach distrust to protect people.</li>
|
||||
<li>We will always provide a way for you to build and verify any binaries we provide yourself.</li>
|
||||
<li>We will always provide a way for you to build and verify any binaries we provide.</li>
|
||||
<li>We are happy to provide you any background research we legally can so you can make your own conclusions.</li>
|
||||
</ul>
|
||||
|
||||
|
|
@ -51,7 +60,7 @@
|
|||
<h4>Transparency</h4>
|
||||
<ul>
|
||||
<li>We regularly open source our research and common advice to get input and corrections from others in our industry.</li>
|
||||
<li>Prices are always public. We will sometimes adjust based on demand, but everyone is offered the same rates.</li>
|
||||
<li>Prices are always the same. We will sometimes adjust based on demand, but everyone is offered the same rates.</li>
|
||||
<li>With the exception of fully Open Source projects, which we offer a universal 15% discount on.</li>
|
||||
</ul>
|
||||
|
||||
|
|
|
|||
|
|
@ -103,6 +103,26 @@
|
|||
</ul>
|
||||
</div>
|
||||
</section>
|
||||
|
||||
<hr />
|
||||
|
||||
<section class="flex-container">
|
||||
<div class="flex-container-inner">
|
||||
<div class="text-well">
|
||||
<h3>git-sig</h3>
|
||||
<a href="https://git.distrust.co/public/git-sig" target="_blank" rel="noopener noreferrer">https://git.distrust.co/public/gitsig</a>
|
||||
<p>The simple multisig toolchain for git repos.</p>
|
||||
</div>
|
||||
</div>
|
||||
<div class="flex-container-inner">
|
||||
<ul>
|
||||
<li>Attach any number of signatures to any given git ref</li>
|
||||
<li>Verify git history contains a minimum threshold of unique commit signatures</li>
|
||||
<li>Verify signatures belong to a defined GPG alias group</li>
|
||||
<li>Verify code changes made since last time minimum valid signatures were present</li>
|
||||
</ul>
|
||||
</div>
|
||||
</section>
|
||||
</main>
|
||||
|
||||
{%- include footer.html -%}
|
||||
|
|
@ -110,4 +130,4 @@
|
|||
</div>
|
||||
</body>
|
||||
|
||||
</html>
|
||||
</html>
|
||||
|
|
|
|||
|
|
@ -62,7 +62,7 @@ h4,
|
|||
h5,
|
||||
h6 {
|
||||
margin: 0px;
|
||||
margin-top: 12px;
|
||||
margin-top: 0px;
|
||||
margin-bottom: 12px;
|
||||
font-weight: bold;
|
||||
color: var(--text-color);
|
||||
|
|
@ -103,23 +103,26 @@ a:hover {
|
|||
}
|
||||
|
||||
p {
|
||||
/*
|
||||
word-wrap: break-word;
|
||||
word-break: break-word;
|
||||
white-space: pre-wrap;
|
||||
margin-bottom: 15px;
|
||||
*/
|
||||
margin-top: 16px;
|
||||
margin-bottom: 16px;
|
||||
}
|
||||
|
||||
footer {
|
||||
color: var(--text-color);
|
||||
border-top: var(--border);
|
||||
margin-top: 0;
|
||||
padding-top: 10px;
|
||||
margin-top: 24px;
|
||||
padding-top: 12px;
|
||||
text-align: right;
|
||||
}
|
||||
|
||||
header {
|
||||
margin-top: 50px;
|
||||
margin-bottom: 50px;
|
||||
margin-top: 24px;
|
||||
margin-bottom: 24px;
|
||||
}
|
||||
|
||||
header p {
|
||||
|
|
@ -147,10 +150,6 @@ hr {
|
|||
text-decoration: none;
|
||||
}
|
||||
|
||||
.header-page-links {
|
||||
margin-right: 10%;
|
||||
}
|
||||
|
||||
.header-page-links li:before {
|
||||
content: ''
|
||||
}
|
||||
|
|
@ -167,7 +166,7 @@ hr {
|
|||
}
|
||||
|
||||
.right-menu {
|
||||
width: 70%;
|
||||
width: 74%;
|
||||
display: flex;
|
||||
justify-content: flex-end;
|
||||
align-items: center;
|
||||
|
|
@ -450,7 +449,7 @@ textarea {
|
|||
.flex-container {
|
||||
display: flex;
|
||||
justify-content: space-between;
|
||||
align-items: center;
|
||||
align-items: flex-start;
|
||||
}
|
||||
|
||||
.flex-container-inner {
|
||||
|
|
@ -458,8 +457,13 @@ textarea {
|
|||
}
|
||||
|
||||
section {
|
||||
padding-top: 100px;
|
||||
padding-bottom: 100px;
|
||||
margin-top: 48px;
|
||||
margin-bottom: 48px;
|
||||
}
|
||||
|
||||
.extra-spacing {
|
||||
margin-top: 70px;
|
||||
margin-bottom: 70px;
|
||||
}
|
||||
|
||||
.companies {
|
||||
|
|
@ -891,6 +895,19 @@ pre {
|
|||
}
|
||||
/** end carousel */
|
||||
|
||||
/**
|
||||
* Blog
|
||||
*/
|
||||
.post img {
|
||||
max-width: 100%;
|
||||
}
|
||||
|
||||
#lp-post-img {
|
||||
max-width: 100%;
|
||||
}
|
||||
|
||||
/** end blog */
|
||||
|
||||
*,
|
||||
*::before,
|
||||
*::after {
|
||||
|
|
|
|||
Binary file not shown.
|
After Width: | Height: | Size: 13 KiB |
Loading…
Reference in New Issue