Application security January 25, 2021 Susan Morrow Software maturity models for AppSec initiatives Software is on the front lines of security: a 2019 report from GitLab found that almost half of respondents deploy software on-demand or multiple times per...
Application security January 11, 2021 Pavitra Shankdhar Best Free and Open Source SQL Injection Tools [Updated 2021] SQL injection is one of the most common attacks against web applications. This is used against websites which use SQL to query data from the database server....
Application security January 6, 2021 Howard Poston Pysa 101: Overview of Facebook’s open-source Python code analysis tool Pyre is a performance type-checker created by Facebook for the Python programming language. It is designed to rapidly identify type errors within Python applications. The...
Application security January 5, 2021 Howard Poston Improving web application security with purple teams The cybersecurity industry - and especially the area of security assessments - is very fond of color-based terms. Organizations can undergo whitebox or...
Application security October 19, 2020 Graeme Messina Open-source application security flaws: What you should know and how to spot them Open-source software helped to revolutionize the way that applications are built by professionals and enthusiasts alike. Being able to borrow a non-proprietary...
Application security August 4, 2020 Ajay Yadav Network Design: Firewall, IDS/IPS There are many different types of devices and mechanisms within the security environment to provide a layered approach of defense. This is so that if an attacker...
Application security July 13, 2020 Pavitra Shankdhar 14 best open-source web application vulnerability scanners [updated for 2020] In the past, many popular websites have been hacked. Hackers are active and always trying to hack websites and leak data. This is why security testing of...
Application security September 6, 2019 Ajay Yadav Advanced .NET Assembly Internals [Updated 2019] Abstract In the previous article of this series, we gained an understanding of the assembly loading process, its format and anatomy. This article looks at...
Application security August 29, 2019 Ajay Yadav Java Code Embedding in C# [Updated 2019] Interoperability Between JVM & CLR Abstract The real concept driving this article is to develop solutions using the .NET or Java Framework that interoperate...
Application security August 24, 2019 Dan Morrill Security in Public API’s – How [Updated 2019] Far too often we will download an API (Application Programming Interface) from Programmable Web, or download an SDK like the Facebook SDK and not worry about...