DEV Community

Security

Hopefully not just an afterthought!

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
When Your Attacker Uses the Same AI as Your Defender

Universal lift in baseline capability

When Your Attacker Uses the Same AI as Your Defender

3
Comments 9
6 min read
WebSocket Authentication Deep Dive — Tokens, Stateful Connections, and the CORS Bypass Nobody Warns You About

WebSocket Authentication Deep Dive — Tokens, Stateful Connections, and the CORS Bypass Nobody Warns You About

1
Comments
7 min read
Letting admins edit email templates without handing them code execution

Letting admins edit email templates without handing them code execution

Comments
4 min read
GitGuardian NHI Governance Now Gives More Comprehensive Visibility

GitGuardian NHI Governance Now Gives More Comprehensive Visibility

Comments
6 min read
Your Cybersecurity Report Gets Rejected. It's Not Because the Finding Is Wrong.

Your Cybersecurity Report Gets Rejected. It's Not Because the Finding Is Wrong.

Comments
3 min read
2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk

2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk

1
Comments
5 min read
[Sofi_Log #016] Longevity Protocol: Refactoring Human Uptime via Biohacking

[Sofi_Log #016] Longevity Protocol: Refactoring Human Uptime via Biohacking

Comments
5 min read
How to Read an AI Vendor's Security Documentation Without Getting Misled

How to Read an AI Vendor's Security Documentation Without Getting Misled

Comments
5 min read
I was handed a server with no docs and no idea what it was listening on. One command fixed that.

I was handed a server with no docs and no idea what it was listening on. One command fixed that.

Comments
6 min read
What the First 90 Days of Managed CSPM Look Like

What the First 90 Days of Managed CSPM Look Like

Comments
6 min read
How to safely move your DMARC policy from p=none to p=reject

How to safely move your DMARC policy from p=none to p=reject

Comments 2
4 min read
Learn Claude Code: /security-review

Learn Claude Code: /security-review

1
Comments
1 min read
We benchmarked 24 SAST tools on ~700 real vulnerabilities. The 3 best known ones came last

We benchmarked 24 SAST tools on ~700 real vulnerabilities. The 3 best known ones came last

Comments
1 min read
What Would People Need If They Lived on the Internet?

What Would People Need If They Lived on the Internet?

Comments
10 min read
The Invisible Breach: Why Modern Web Frameworks Aren't Immune to LFI

The Invisible Breach: Why Modern Web Frameworks Aren't Immune to LFI

Comments
8 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.