DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Top 10 Npm Security Best Practices

Top 10 Npm Security Best Practices

27
Comments
7 min read
CSRF tokens for SPAs - Possible?

CSRF tokens for SPAs - Possible?

22
Comments 4
2 min read
Stay Secure

Stay Secure

4
Comments
2 min read
Should I train on CTF or Bug Bounty ?

Should I train on CTF or Bug Bounty ?

4
Comments
1 min read
Bash random password generator

Bash random password generator

26
Comments 17
4 min read
Demystifying CORS, CSRF tokens, SameSite & Clickjacking - Web Security

Demystifying CORS, CSRF tokens, SameSite & Clickjacking - Web Security

175
Comments 1
9 min read
Configuring Security Services with AWS Organizations – Part 1: Getting Started

Configuring Security Services with AWS Organizations – Part 1: Getting Started

22
Comments 1
9 min read
Configuring Security Services with AWS Organizations – Part 2: AWS GuardDuty

Configuring Security Services with AWS Organizations – Part 2: AWS GuardDuty

18
Comments
7 min read
Implementing step by step the hub and spoke network topology in Google Cloud

Implementing step by step the hub and spoke network topology in Google Cloud

11
Comments
11 min read
ARM hacking – shellcode exec

ARM hacking – shellcode exec

6
Comments
3 min read
Truly Protected React Routes

Truly Protected React Routes

60
Comments 10
6 min read
ARM shellcode

ARM shellcode

3
Comments
2 min read
Authentication and Authorisation 101

Authentication and Authorisation 101

459
Comments 6
5 min read
ARM – rewrite PC

ARM – rewrite PC

6
Comments
2 min read
How http became the https that we know today?

How http became the https that we know today?

2
Comments
4 min read
Add SAML SSO to a Rails 6 app

Add SAML SSO to a Rails 6 app

20
Comments 1
26 min read
CVE-2021-3156: Heap-Based Buffer Overflow in Sudo

CVE-2021-3156: Heap-Based Buffer Overflow in Sudo

14
Comments
3 min read
Fun with SAML SSO Vulnerabilities and Footguns

Fun with SAML SSO Vulnerabilities and Footguns

4
Comments 1
17 min read
ARM BoF exploit via pwntools

ARM BoF exploit via pwntools

2
Comments
4 min read
How to Secure JWT in a Single-Page Application

How to Secure JWT in a Single-Page Application

347
Comments 22
5 min read
Securing access to Google Service Accounts from Gitlab CI

Securing access to Google Service Accounts from Gitlab CI

11
Comments 2
5 min read
AWS Certified Solutions Architect Associate exam and the new AWS CSA Certification Track

AWS Certified Solutions Architect Associate exam and the new AWS CSA Certification Track

9
Comments
3 min read
ARM BOF, überwrite stack data

ARM BOF, überwrite stack data

3
Comments
3 min read
Frontend Security: Content Security Policy

Frontend Security: Content Security Policy

98
Comments 9
3 min read
Wipe Windows Directory

Wipe Windows Directory

2
Comments
1 min read
A simple ARM buffer overflow

A simple ARM buffer overflow

6
Comments
3 min read
If you don't use a secret management tool, you're doing it wrong

If you don't use a secret management tool, you're doing it wrong

3
Comments
5 min read
Use SonarQube to Scan source code for vulnerabilities using SAST (Static Application Security Testing)

Use SonarQube to Scan source code for vulnerabilities using SAST (Static Application Security Testing)

4
Comments
1 min read
Secure your Vue.js + APIs with Azure AD B2C

Secure your Vue.js + APIs with Azure AD B2C

23
Comments 3
6 min read
How do you approach adding new npm dependencies to a project?

How do you approach adding new npm dependencies to a project?

9
Comments 4
1 min read
MASVS & MSTG: A Quick Guide To Mobile App Security

MASVS & MSTG: A Quick Guide To Mobile App Security

13
Comments
10 min read
npm security issues to know of in 2021

npm security issues to know of in 2021

26
Comments
4 min read
A swiss army knife tool to store personal records 🛡️

A swiss army knife tool to store personal records 🛡️

8
Comments
1 min read
State of Software Architecture Quality

State of Software Architecture Quality

2
Comments
1 min read
You should know about Server-Side Request Forgery

You should know about Server-Side Request Forgery

4
Comments
7 min read
How to set up a proxy server in Kali Linux

How to set up a proxy server in Kali Linux

23
Comments
3 min read
Tools for Static Application Security Testing

Tools for Static Application Security Testing

6
Comments
4 min read
Implement Protected Routes in NextJS

Implement Protected Routes in NextJS

147
Comments 35
2 min read
AWS Session Manager Port Forwarding to RDS (without SSH)

AWS Session Manager Port Forwarding to RDS (without SSH)

17
Comments 3
2 min read
The man at the entrance. Google's IAP - Identity-Aware Proxy

The man at the entrance. Google's IAP - Identity-Aware Proxy

2
Comments
2 min read
ssh. is it secure or just a bluff ? Understand how it works .

ssh. is it secure or just a bluff ? Understand how it works .

31
Comments 4
4 min read
How to securely store passwords?

How to securely store passwords?

130
Comments 13
13 min read
A Guide to Securing Node.js Applications

A Guide to Securing Node.js Applications

1974
Comments 46
11 min read
The Developer’s Guide to SSO

The Developer’s Guide to SSO

28
Comments
10 min read
Demystifying JWT: How to secure your next web app

Demystifying JWT: How to secure your next web app

632
Comments 16
7 min read
Integrando segurança ao processo de desenvolvimento

Integrando segurança ao processo de desenvolvimento

3
Comments
5 min read
Handling Injection Attacks With JavaScript

Handling Injection Attacks With JavaScript

53
Comments 2
3 min read
Security news weekly round-up - 22nd January 2021

Security news weekly round-up - 22nd January 2021

4
Comments
3 min read
The quick wins of DevSecOps

The quick wins of DevSecOps

8
Comments
7 min read
Demystifying cookie security in Rails 6

Demystifying cookie security in Rails 6

54
Comments 4
8 min read
Secure and Air Gap a Kubernetes Cluster with VPC Gen2

Secure and Air Gap a Kubernetes Cluster with VPC Gen2

2
Comments
1 min read
Adding multi-factor authentication to your app, the easy way

Adding multi-factor authentication to your app, the easy way

60
Comments 4
6 min read
Keep up with the times: forget SSH, welcome AWS Session Manager

Keep up with the times: forget SSH, welcome AWS Session Manager

20
Comments 4
8 min read
Debugging Spring Security

Debugging Spring Security

13
Comments 2
1 min read
How to protect Azure resources from DDoS?

How to protect Azure resources from DDoS?

4
Comments 1
6 min read
FireEye announces technical details of SolarWinds hacker and provides free detection tools

FireEye announces technical details of SolarWinds hacker and provides free detection tools

3
Comments
2 min read
SAML vs. OAuth

SAML vs. OAuth

51
Comments
7 min read
Rust in Production: 1Password

Rust in Production: 1Password

11
Comments 1
7 min read
AWS Certified Security Speciality a few thoughts

AWS Certified Security Speciality a few thoughts

18
Comments
6 min read
Building a secure/sandboxed environment for executing untrusted code

Building a secure/sandboxed environment for executing untrusted code

55
Comments 7
8 min read
loading...