DEV Community

# appsec

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
How to pass the OWASP MASVS verification by design

How to pass the OWASP MASVS verification by design

4
Comments
6 min read
OWASP® Cornucopia Website App 2.1 & Mobile App 1.1!

OWASP® Cornucopia Website App 2.1 & Mobile App 1.1!

7
Comments
5 min read
SQL Injection: the vulnerability that refuses to die

SQL Injection: the vulnerability that refuses to die

Comments
4 min read
How to do threat modeling for agile mobile app development?

How to do threat modeling for agile mobile app development?

4
Comments
8 min read
Access Control Security: Learning from Major Data Breaches

Access Control Security: Learning from Major Data Breaches

Comments
5 min read
My VAPT Learning Journey

My VAPT Learning Journey

Comments
3 min read
Lessons Learned #2: Your new feature could introduce a security vulnerability to your old feature (Clickhouse CVE-2024-22412)

Lessons Learned #2: Your new feature could introduce a security vulnerability to your old feature (Clickhouse CVE-2024-22412)

Comments
4 min read
Why Security Misconfigurations Matter and 5 Ways to Prevent Them

Why Security Misconfigurations Matter and 5 Ways to Prevent Them

Comments
1 min read
API Security: Threats, Tools, and Best Practices

API Security: Threats, Tools, and Best Practices

5
Comments
1 min read
Prevention: It's Time to Save Those Millions

Prevention: It's Time to Save Those Millions

1
Comments
2 min read
Introducing Omni4J: Secure your Java code

Introducing Omni4J: Secure your Java code

Comments
2 min read
DEF CON 32: What We Learned About Secrets Security at AppSec Village

DEF CON 32: What We Learned About Secrets Security at AppSec Village

8
Comments 1
9 min read
Lessons Learned #1: One line of code can make your application vulnerable (Pre-Auth RCE in Metabase CVE-2023–38646)

Lessons Learned #1: One line of code can make your application vulnerable (Pre-Auth RCE in Metabase CVE-2023–38646)

Comments
4 min read
Compreendendo o SAMM

Compreendendo o SAMM

1
Comments
6 min read
Web Security and Bug Bounty Hunting: Knowledge, Tools, and Certifications

Web Security and Bug Bounty Hunting: Knowledge, Tools, and Certifications

3
Comments
3 min read
Understanding the Distinction Between Information Security and Cybersecurity

Understanding the Distinction Between Information Security and Cybersecurity

Comments
2 min read
Secure SDLC (Part 1): issues, approach, tech metrics, team’s KPI

Secure SDLC (Part 1): issues, approach, tech metrics, team’s KPI

1
Comments
6 min read
Next.js: consequence of AppRouter on your CSP

Next.js: consequence of AppRouter on your CSP

Comments
3 min read
Creating a DevSecOps pipeline with Jenkins — Part 1

Creating a DevSecOps pipeline with Jenkins — Part 1

1
Comments
12 min read
Mastering Application Security: The Power of Rate Limiting

Mastering Application Security: The Power of Rate Limiting

8
Comments
6 min read
Next.js: Crafting a Strict CSP

Next.js: Crafting a Strict CSP

1
Comments 1
4 min read
O que vem depois do Pentesting?

O que vem depois do Pentesting?

14
Comments
13 min read
Security - A brief introduction to application security

Security - A brief introduction to application security

5
Comments
2 min read
Pensando sobre Cultura de AppSec

Pensando sobre Cultura de AppSec

8
Comments 1
3 min read
Securing Your Applications on AWS: Guide to Data Privacy and Protection

Securing Your Applications on AWS: Guide to Data Privacy and Protection

2
Comments
3 min read
loading...