DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
🔑 OAuth 2.0 flows explained in GIFs

🔑 OAuth 2.0 flows explained in GIFs

278
Comments 15
7 min read
Least privilege with less effort: Macaroon access tokens for OAuth

Least privilege with less effort: Macaroon access tokens for OAuth

3
Comments
8 min read
Implement a distributed token cache for ASP.NET Core apps with Azure Cosmos DB

Implement a distributed token cache for ASP.NET Core apps with Azure Cosmos DB

11
Comments 10
3 min read
Freedom of Security with Paula de la Hoz 13:25

Freedom of Security with Paula de la Hoz

61
Comments 30
1 min read
Simple secret sharing with gopass and summon

Simple secret sharing with gopass and summon

17
Comments
5 min read
Website security pentesting with a funny twist

Website security pentesting with a funny twist

27
Comments
5 min read
Online Vs Offline Cryptocurrency Wallets

Online Vs Offline Cryptocurrency Wallets

5
Comments 1
5 min read
Akeyless Vault Review: Secure Secrets Management with Ephemeral Delivery

Akeyless Vault Review: Secure Secrets Management with Ephemeral Delivery

4
Comments
8 min read
Major DevOps Challenges and How to Address Them

Major DevOps Challenges and How to Address Them

31
Comments 5
10 min read
Elasticsearch MEOW attacks

Elasticsearch MEOW attacks

3
Comments
1 min read
7 security tips for your React application. 🔐

7 security tips for your React application. 🔐

565
Comments 17
7 min read
Hacker101 CTF - TempImage

Hacker101 CTF - TempImage

11
Comments 1
5 min read
Forcing Your Website To Serve Secure Content

Forcing Your Website To Serve Secure Content

6
Comments
2 min read
How to safely use GitHub Actions in organizations

How to safely use GitHub Actions in organizations

8
Comments
12 min read
OIDC Authentication with React & Identity Server 4

OIDC Authentication with React & Identity Server 4

31
Comments 14
4 min read
💻 Software Versioning: What Numbers Say

💻 Software Versioning: What Numbers Say

21
Comments 3
2 min read
(Very) Basic Intro to PGP (GPG)

(Very) Basic Intro to PGP (GPG)

7
Comments
4 min read
CTF.live - Ecommerce: Web to Shell Walkthrough

CTF.live - Ecommerce: Web to Shell Walkthrough

6
Comments
6 min read
HTTPS for Local Sites

HTTPS for Local Sites

7
Comments
6 min read
How to make your express API more secure with helmet

How to make your express API more secure with helmet

75
Comments 7
2 min read
The dangers of choosing the wrong identifier for your users when federating logins

The dangers of choosing the wrong identifier for your users when federating logins

3
Comments
2 min read
Best way to make website only accessible to you or some selected people?

Best way to make website only accessible to you or some selected people?

9
Comments 8
1 min read
Flask Login-Register-Logout Implementation

Flask Login-Register-Logout Implementation

25
Comments 6
7 min read
Secure (xc)config for iOS apps

Secure (xc)config for iOS apps

13
Comments 2
4 min read
How to secure gRPC connection with SSL/TLS in Go

How to secure gRPC connection with SSL/TLS in Go

75
Comments 7
10 min read
CWEs vs OWASP top 10?

CWEs vs OWASP top 10?

11
Comments
7 min read
What's your browser doing?

What's your browser doing?

29
Comments
6 min read
What are the major lessons from the Twitter hack?

What are the major lessons from the Twitter hack?

41
Comments 27
1 min read
I tell you a secret: Provide Database credentials to an ECS Fargate task in AWS CDK

I tell you a secret: Provide Database credentials to an ECS Fargate task in AWS CDK

21
Comments
4 min read
Security on localhost?

Security on localhost?

21
Comments 3
1 min read
2FA and recovery codes

2FA and recovery codes

2
Comments
1 min read
Automated Pull Requests, to merge or not?

Automated Pull Requests, to merge or not?

18
Comments 1
1 min read
Why we're finally beta

Why we're finally beta

5
Comments
2 min read
Live Vulnerability spotting in VSCode

Live Vulnerability spotting in VSCode

4
Comments
1 min read
Security news weekly round-up - 24th July 2020

Security news weekly round-up - 24th July 2020

6
Comments
4 min read
Azure Functions and App Service Authentication with Auth0 and other OpenID Connect providers

Azure Functions and App Service Authentication with Auth0 and other OpenID Connect providers

35
Comments
4 min read
HTTPS on Localhost for Any Web Application

HTTPS on Localhost for Any Web Application

13
Comments
2 min read
Compressing Authority

Compressing Authority

5
Comments
24 min read
Is it okay to expose MongoDB ObjectIds?

Is it okay to expose MongoDB ObjectIds?

2
Comments 4
1 min read
Safety on the streets with python

Safety on the streets with python

26
Comments
2 min read
Cheat sheet for Linux Hacking 😅

Cheat sheet for Linux Hacking 😅

10
Comments
1 min read
Cat Login Detection

Cat Login Detection

29
Comments 10
2 min read
Why upgrade Android?

Why upgrade Android?

4
Comments
6 min read
The Evil JavaScript eval()

The Evil JavaScript eval()

9
Comments
3 min read
WordPress Security: Vulnerabilities And How To Improve Security

WordPress Security: Vulnerabilities And How To Improve Security

13
Comments
2 min read
Top 10 API Security Threats Every API Team Should Know

Top 10 API Security Threats Every API Team Should Know

48
Comments
9 min read
Is Your Data Really Safe in the Cloud?

Is Your Data Really Safe in the Cloud?

9
Comments
6 min read
What About the Cookies??

What About the Cookies??

7
Comments 1
5 min read
Hidden keys on django projects

Hidden keys on django projects

8
Comments
1 min read
Setting up mTLS and Kestrel

Setting up mTLS and Kestrel

5
Comments 1
7 min read
How much free the free apps are?

How much free the free apps are?

7
Comments 2
4 min read
AWS Marketplace Automation

AWS Marketplace Automation

3
Comments
2 min read
What on Earth Is OAuth? ASuper Simple Intro to OAuth 2.0, Access Tokens, and How to Implement It in Your Site

What on Earth Is OAuth? ASuper Simple Intro to OAuth 2.0, Access Tokens, and How to Implement It in Your Site

155
Comments
7 min read
Creating Elliptical Curve Keys using OpenSSL

Creating Elliptical Curve Keys using OpenSSL

6
Comments
3 min read
Information Gathering with "theHarvester"

Information Gathering with "theHarvester"

9
Comments
9 min read
User journey through hell: 20 ways to lose access to your account

User journey through hell: 20 ways to lose access to your account

2
Comments 2
1 min read
Laravel IP Whitelisting

Laravel IP Whitelisting

2
Comments
1 min read
Web Security 101

Web Security 101

50
Comments 2
6 min read
Twitter accounts for Apple, Elon Musk and Bill Gates were hacked

Twitter accounts for Apple, Elon Musk and Bill Gates were hacked

37
Comments 15
1 min read
TL;DR : RFC 6238, TOTP (Time based one time password)

TL;DR : RFC 6238, TOTP (Time based one time password)

7
Comments
1 min read
loading...