DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
Minority Report on Let’s Encrypt CAA Rechecking

Minority Report on Let’s Encrypt CAA Rechecking

9
Comments
15 min read
What is secret sprawl, why it’s dangerous, and how developers can prevent it?

What is secret sprawl, why it’s dangerous, and how developers can prevent it?

3
Comments
5 min read
Adding SSL when using Heroku and Namecheap

Adding SSL when using Heroku and Namecheap

11
Comments
2 min read
Automating AWS SSO and G-Suite synchronisation with SSO Sync

Automating AWS SSO and G-Suite synchronisation with SSO Sync

21
Comments 4
5 min read
Pentesting Report: Attack Narrative Series Part 2: Threat Modeling

Pentesting Report: Attack Narrative Series Part 2: Threat Modeling

12
Comments
2 min read
Artificial Intelligence In Cyber Security

Artificial Intelligence In Cyber Security

26
Comments
2 min read
Automated Software Security Testing for Devs

Automated Software Security Testing for Devs

26
Comments
1 min read
Migrating existing code to a new password hashing algorithm

Migrating existing code to a new password hashing algorithm

5
Comments
2 min read
Writeup: HackTheBox Blue- Without Metasploit (OSCP Prep)

Writeup: HackTheBox Blue- Without Metasploit (OSCP Prep)

4
Comments
3 min read
SliceHeader Literals in Go create a GC Race and Flawed Escape-Analysis. Exploitation with unsafe.Pointer on Real-World Code

SliceHeader Literals in Go create a GC Race and Flawed Escape-Analysis. Exploitation with unsafe.Pointer on Real-World Code

8
Comments
18 min read
Is open-sourcing server-side code a security threat?

Is open-sourcing server-side code a security threat?

11
Comments 24
1 min read
Como tornar sua API express mais segura com Helmet

Como tornar sua API express mais segura com Helmet

12
Comments 1
2 min read
Cyber Security Threats And Best Practices For Remote Workers

Cyber Security Threats And Best Practices For Remote Workers

21
Comments 2
1 min read
PostgreSQL 12: TLS Connection

PostgreSQL 12: TLS Connection

5
Comments
3 min read
Asguard, a security solution for bringing sensitive code into the Cloud

Asguard, a security solution for bringing sensitive code into the Cloud

8
Comments 2
22 min read
Preserve, protect & defend your code

Preserve, protect & defend your code

5
Comments
7 min read
Building a Mix Protocol Apache Kafka Cluster

Building a Mix Protocol Apache Kafka Cluster

8
Comments 1
6 min read
DevSecOps - Ataque de alteração de parâmetros da requisição

DevSecOps - Ataque de alteração de parâmetros da requisição

12
Comments
10 min read
Concerns regarding using payment with graphql and js in general

Concerns regarding using payment with graphql and js in general

10
Comments 4
1 min read
Fixing Security Bugs Faster with curl Validation

Fixing Security Bugs Faster with curl Validation

9
Comments
3 min read
[TryHackMe.com] Erit Securus I writeup

[TryHackMe.com] Erit Securus I writeup

5
Comments
4 min read
Docker vs Serverless, and does it have to be on the same domain as frontend?

Docker vs Serverless, and does it have to be on the same domain as frontend?

2
Comments 1
1 min read
Scanning web application with OWASP ZAP

Scanning web application with OWASP ZAP

21
Comments 4
3 min read
Hardening Docker Container Using Seccomp Security Profile

Hardening Docker Container Using Seccomp Security Profile

12
Comments
3 min read
immudb is an open source, high-speed immutable database for systems and applications

immudb is an open source, high-speed immutable database for systems and applications

7
Comments 1
2 min read
Manage your secrets in Git with SOPS - Common operations

Manage your secrets in Git with SOPS - Common operations

26
Comments 3
2 min read
Learning the CTF way! : 1/n

Learning the CTF way! : 1/n

10
Comments 2
2 min read
[TryHackMe.com] Basic Pentesting Writeup

[TryHackMe.com] Basic Pentesting Writeup

43
Comments 2
6 min read
Hacker101 CTF - Hello World!

Hacker101 CTF - Hello World!

18
Comments
4 min read
Choose Distroless containers by default

Choose Distroless containers by default

10
Comments
4 min read
SSL Pinning

SSL Pinning

9
Comments
6 min read
Security news weekly round-up - 29th May 2020

Security news weekly round-up - 29th May 2020

5
Comments
3 min read
Are you storing your files correctly? Let’s explore a real-world backend issue.

Are you storing your files correctly? Let’s explore a real-world backend issue.

8
Comments
2 min read
5 NPM and Node tips to make your dev machine safer

5 NPM and Node tips to make your dev machine safer

34
Comments
4 min read
Setting up wordpress Multisite

Setting up wordpress Multisite

11
Comments 1
8 min read
How to choose and care for a secure open source project

How to choose and care for a secure open source project

63
Comments 1
7 min read
3 Labour-Saving Tools: Put a Stop To Click Fraud

3 Labour-Saving Tools: Put a Stop To Click Fraud

3
Comments
5 min read
Setting up G-Suite, AWS SSO and ssosync

Setting up G-Suite, AWS SSO and ssosync

24
Comments 5
16 min read
How to Do Security Testing Manually: 12 Effective Ways

How to Do Security Testing Manually: 12 Effective Ways

10
Comments
10 min read
Artifactory & Xray on Openshift via OperatorHub

Artifactory & Xray on Openshift via OperatorHub

7
Comments 1
4 min read
Website users' security vs usability, and does it mean anything for (smaller) webdevs?

Website users' security vs usability, and does it mean anything for (smaller) webdevs?

15
Comments 1
1 min read
Scammers signed up, scammed us of $870 in 15 minutes.

Scammers signed up, scammed us of $870 in 15 minutes.

29
Comments 5
5 min read
Have you any bot to recommend in order to test website security (SQL Injections or others) ?

Have you any bot to recommend in order to test website security (SQL Injections or others) ?

5
Comments 2
1 min read
Permissions Security For Deno

Permissions Security For Deno

5
Comments
2 min read
Writeup: HackTheBox Devel- Without Metasploit (OSCP Prep)

Writeup: HackTheBox Devel- Without Metasploit (OSCP Prep)

3
Comments
6 min read
Bye bye Feature-Policy, hello Permissions-Policy

Bye bye Feature-Policy, hello Permissions-Policy

4
Comments
3 min read
Manage your secrets in Git with SOPS

Manage your secrets in Git with SOPS

77
Comments 2
3 min read
Exploitation Exercise with Go unsafe.Pointer: ROP and Spawning a Shell (Part 3)

Exploitation Exercise with Go unsafe.Pointer: ROP and Spawning a Shell (Part 3)

3
Comments
12 min read
Protect your application from CSRF attacks

Protect your application from CSRF attacks

47
Comments 4
9 min read
How to Perform Threat Modeling & Security Analysis in 5 Steps

How to Perform Threat Modeling & Security Analysis in 5 Steps

13
Comments
5 min read
Securing express js server

Securing express js server

7
Comments
1 min read
How to TPM - Part 1: TPM Vocabulary

How to TPM - Part 1: TPM Vocabulary

11
Comments 1
5 min read
IAM Policy for humans

IAM Policy for humans

11
Comments
2 min read
Azure SSL Certificate! WebApp!! WAF!!!

Azure SSL Certificate! WebApp!! WAF!!!

3
Comments
2 min read
Passwordless Authentication with Cognito

Passwordless Authentication with Cognito

42
Comments 12
12 min read
OAuth 2.0 Internals and Applications

OAuth 2.0 Internals and Applications

2
Comments
1 min read
What is IAM? (A beginner's guide)

What is IAM? (A beginner's guide)

21
Comments
5 min read
CLOCKS in Linux

CLOCKS in Linux

3
Comments
1 min read
Build your own penetration testing lab with AWS, Kali Linux and OWASP ZAP - Getting started

Build your own penetration testing lab with AWS, Kali Linux and OWASP ZAP - Getting started

19
Comments 3
2 min read
How to enable TLS 1.3 in Nginx with OpenSSL Centos 7

How to enable TLS 1.3 in Nginx with OpenSSL Centos 7

8
Comments 2
5 min read
loading...