More Cybersecurity GPTs and a Move Towards Passwordless Login
Cybersecurity GPTs
I’ve been regularly checking the Awesome GPTs (Agents) for Cybersecurity GitHub site since I first noticed it around a month ago and shared some of the cybersecurity GPTs that seemed impressive. This week I’ve found a couple more that look quite useful, for very different purposes.
The first one is called Cybersecurity Requirements Guide, created by Dustin Wahlen, with a strapline that reads “I'll help you write cybersecurity requirements!”. One of its example prompts is: Write detailed lower level requirements for backup and recovery.
I gave it a try by asking it to create drafts for a few different types of security policies, including the one in the screenshot below for an access management policy. As with everything we get in chatbot responses, the policy drafts are not ready to just copy/paste into a corporate template and publish. They do look like quite good starting point outlines for crafting security policy documents though.
The other cyber GPT that caught my eye this week is Pen Test Interviewer, by Alex Thomas. This one’s intro sales pitch is: “I'm your interviewer for penetration testing, challenging your cybersecurity skills.” I am not a penetration tester and never have been, but I tried it out this morning as an interviewee and it seems like a solid practice interviewer - at least for those trying to break into this field. Here’s a slice of my experience with it this morning, with bonus typos in my answers which I am blaming on lack of coffee at that stage of the morning:
You can find both of these cyber GPTs at the Awesome GPTs (Agents) for Cybersecurity GitHub site linked above. If you want to take a look at the first set of cybersecurity GPTs I was impressed by, you can see those in this post:
A Move towards passwordless login
Dashlane announced yesterday that their password manager now offers a passwordless option. This means users now have an option to not use a master password (which is the standard with password managers) to login. Dashlane is among the leading password managers and the concept of passwordless login has been a sort of security nirvana for a long while, so this is good news.
A few things to note here:
Passwordless is just an option - continuing to use a master password also remains an option
Right now, the passwordless option is only available to new users, with a promise that it is coming for existing users later this year - so very soon
Dashlane also offers using biometrics in its security options and has its own authenticator app - lots of support for stronger authentication methods