👋 Sign in for the ability to sort posts by relevant, latest, or top.
VMClarity: Virtual Machine Security
Criando meu próprio Github Actions para a área de AppSec
VMClarity: What Happens During a Scan?
How to scan your ruby or JS project for security improvements, for free.
Breaking and building encryption in NFC digital wallets 📳
Modelagem de Ameaças -Decompondo o Aplicativo
What’s the Difference between AppSec, Software Security, Cybersecurity, and DevSecOps?
Os diferentes modos de se realizar SAST com a Veracode
Terminologias Utilizadas em Modelagem de Ameaças
Explicando o TOP 4 da OWASP "Design Inseguro" para desenvolvedores
Modelagem de Ameaças - Introdução
Princípios de Segurança Cibernética
Explicando o TOP 2 da OWASP "Falhas Criptográficas" para desenvolvedores
Explicando o TOP 1 da OWASP "Broken Access Control" para desenvolvedores
GitHub: How To Enable Code Scanning With Semgrep
open-appsec NGINX WAF makes machine learning friendly using gamification
Subscribe to a new newsletter for security-aware developers!
What is Minimum Viable Security (MVS) and how does it improve the life of developers?
Encryption in ⛅ cloud native apps
Network Traffic Observability: Three PacketStreamer Use Cases
Doing DevSecOps without constant CI/CD changes
How to Approach DevSecOps Security Automation
2 free data security tools every dev should know (and use)
ThreatMapper 1.3.0: Now with Secret Scanning, Runtime SBOMs, and More
Spring Boot: Prevent Log Injection Attacks With Logback
Exploring 🚩🚩🚩red flags in React Native security libraries
How to build a secure crypto wallet
Authentication bypass in cryptography library
Secure by default, unsafe by you
Security by incident and surprise
Angular Security - Disable Inline Critical CSS
How to approach DevSecOps security automation
Codecov supply chain attack - Step by step breakdown
What do appsec and fire extinguishers have in common?
To Secure Today’s Code, It’s Time to Shift Left
Alice and Bob Learn: Chapter Discussions
One Year Anniversary of We Hack Purple
Why I Joined the NeuraLegion Advisory Board
Publishing an obfuscated kotlin library
How to get your boss to approve the training you want
Security is Everybody's Job - Part 6 - The Second Way
Security is Everybody's Job - Part 5 - The First Way
Security is Everybody's Job - Part 4 - What is DevSecOps?
Security is Everybody's Job - Part 3 - What IS DevOps?
AMA: Where can we learn Threat Modelling?
Using StackHawk in GitLab - Know Before You Go (Live)
AMA: DevSecOps versus Secure SDLC
Scanning the Damn Vulnerable Web App with StackHawk
Security is Everybody's Job - Part 2 - What is application security?
AppSec: Some testing technique explained DAST, SAST, IAST, OSA/SCA
Security is Everybody's Job - Part 1 - DevSecOps
AMA AppSec: What would you tell University Students about Application Security?
Quick Security in VS Code with CodeSweep
Ryan Lockard Names the Seven Deadly Sins of DevSecOps
How AWS's EC2 Instance Metadata V2 Prevents SSRF