DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Issue 47 and 48 of AWS Cloud Security Weekly

Issue 47 and 48 of AWS Cloud Security Weekly

3
Comments
3 min read
Securely connect via SSH without an SSH key (AWS/Google Cloud/Azure)

Securely connect via SSH without an SSH key (AWS/Google Cloud/Azure)

2
Comments
2 min read
Lập trình web phải phân biệt được Session và Cookie

Lập trình web phải phân biệt được Session và Cookie

Comments 1
4 min read
EKS Secret Management — with Golang, AWS ParameterStore and Terraform

EKS Secret Management — with Golang, AWS ParameterStore and Terraform

28
Comments 2
11 min read
Set up an automated incident management response using AWS

Set up an automated incident management response using AWS

2
Comments
9 min read
How to configure Server-Side Encryption (SSE-S3) in Amazon S3?

How to configure Server-Side Encryption (SSE-S3) in Amazon S3?

8
Comments
3 min read
about kelvin, a terminal password manager i'm building

about kelvin, a terminal password manager i'm building

6
Comments
6 min read
How To Manage Amazon Inspector in AWS Organizations Using Terraform

How To Manage Amazon Inspector in AWS Organizations Using Terraform

5
Comments
6 min read
Identifying Container Image Vulnerabilities with Docker Scout

Identifying Container Image Vulnerabilities with Docker Scout

1
Comments
1 min read
Exposing the Deception: Discord Account Generator with Hidden Malware

Exposing the Deception: Discord Account Generator with Hidden Malware

14
Comments 2
5 min read
Securing Your Next.js with Arcjet on Fly.io with Lightning-Fast Deployment

Securing Your Next.js with Arcjet on Fly.io with Lightning-Fast Deployment

7
Comments
4 min read
GitHub Release Action for the Python Package Index

GitHub Release Action for the Python Package Index

Comments
18 min read
Update! Interactive description of iptables tables

Update! Interactive description of iptables tables

Comments
1 min read
HackTheBox - Writeup Nunchucks [Retired]

HackTheBox - Writeup Nunchucks [Retired]

1
Comments
10 min read
Enforcing Firebase App Check for Firestore with Initialization Configuration

Enforcing Firebase App Check for Firestore with Initialization Configuration

2
Comments
2 min read
11 API Trends to Watch for in 2024

11 API Trends to Watch for in 2024

Comments
7 min read
Enhancing ECR Security: Scheduled Automated Container Scans and Slack Notifications

Enhancing ECR Security: Scheduled Automated Container Scans and Slack Notifications

1
Comments
6 min read
Next Generation SQL Injection: Github Actions Edition

Next Generation SQL Injection: Github Actions Edition

6
Comments 1
2 min read
Security news weekly round-up - 7th June 2024

Security news weekly round-up - 7th June 2024

5
Comments
3 min read
Configure Renovate to update preview versions of NuGet packages

Configure Renovate to update preview versions of NuGet packages

Comments
2 min read
Configure Renovate to handle nuspec files

Configure Renovate to handle nuspec files

Comments
2 min read
Nếu một ngày Service account và API key trên Google Cloud không cánh mà bay ?

Nếu một ngày Service account và API key trên Google Cloud không cánh mà bay ?

7
Comments
10 min read
API Security: Key Protocols

API Security: Key Protocols

5
Comments
7 min read
Introducing F**kDevTools.js: Secure Your Web Applications

Introducing F**kDevTools.js: Secure Your Web Applications

6
Comments
2 min read
Zero Trust Security: Beyond the Castle Walls

Zero Trust Security: Beyond the Castle Walls

12
Comments
11 min read
What is DevSecOps? A Comprehensive Look at DevSecOps

What is DevSecOps? A Comprehensive Look at DevSecOps

100
Comments 4
12 min read
Remotely Access Your Home Assistant Instance Securely

Remotely Access Your Home Assistant Instance Securely

Comments
6 min read
Identifying a typosquatting attack on "requests," the 4th-most-popular Python package

Identifying a typosquatting attack on "requests," the 4th-most-popular Python package

4
Comments 1
1 min read
Use non-root user in scratch docker image

Use non-root user in scratch docker image

1
Comments
1 min read
Protect Your API-Endpoints in Next.js 14 with the Chain of Responsibility Pattern.

Protect Your API-Endpoints in Next.js 14 with the Chain of Responsibility Pattern.

Comments
4 min read
ScoutSuite

ScoutSuite

1
Comments
2 min read
Authentication in monorepo(NextJs, Astro) with Lucia and MongoDB

Authentication in monorepo(NextJs, Astro) with Lucia and MongoDB

1
Comments
12 min read
Securing File Uploads

Securing File Uploads

Comments
5 min read
Implementing Role Based Access Control (RBAC) in Node.js and Express App

Implementing Role Based Access Control (RBAC) in Node.js and Express App

21
Comments
10 min read
Combining Edge Stack & Istio to Unlock the Full Potential of Your K8s Microservices

Combining Edge Stack & Istio to Unlock the Full Potential of Your K8s Microservices

Comments
8 min read
Enhanced Container Isolation(ECI) vs. Rootless Docker: Securing Your Docker Desktop Workflows

Enhanced Container Isolation(ECI) vs. Rootless Docker: Securing Your Docker Desktop Workflows

Comments
3 min read
Be a Part of OWASP Top 10 2024!

Be a Part of OWASP Top 10 2024!

5
Comments 3
4 min read
New domain OSINT tool. Your thoughts and feedback?

New domain OSINT tool. Your thoughts and feedback?

Comments
1 min read
Cloud-Native Security: A Guide to Microservices and Serverless Protection

Cloud-Native Security: A Guide to Microservices and Serverless Protection

16
Comments 1
11 min read
Understanding OTP SMS Bombing

Understanding OTP SMS Bombing

3
Comments
2 min read
Death of DevSecOps, Part 2

Death of DevSecOps, Part 2

3
Comments
4 min read
Enhancing Security in Web Applications with Custom Response Headers in Next.js

Enhancing Security in Web Applications with Custom Response Headers in Next.js

3
Comments 1
2 min read
Code Integrity Unleashed: The Crucial Role of Git Signed Commits

Code Integrity Unleashed: The Crucial Role of Git Signed Commits

1
Comments
1 min read
Pipeline Integrity and Security in DevSecOps

Pipeline Integrity and Security in DevSecOps

Comments
11 min read
Interoperability for Seamless Integration of Blockchain Networks

Interoperability for Seamless Integration of Blockchain Networks

1
Comments
4 min read
Amazon Inspector

Amazon Inspector

5
Comments
3 min read
AWS Athena for GitHub - Eliminating the default Security blind spots

AWS Athena for GitHub - Eliminating the default Security blind spots

5
Comments
10 min read
OpenID Connect Flows: From Implicit to Authorization Code with PKCE & BFF

OpenID Connect Flows: From Implicit to Authorization Code with PKCE & BFF

1
Comments
30 min read
Social engineering

Social engineering

26
Comments
10 min read
OpenSSF Case Study: Enhancing Open Source Security with Sigstore at Stacklok

OpenSSF Case Study: Enhancing Open Source Security with Sigstore at Stacklok

3
Comments
1 min read
Access Google Cloud Secret Manager via Google Apps Script

Access Google Cloud Secret Manager via Google Apps Script

Comments
2 min read
User Authorization with Postgres Row Level Security Policy

User Authorization with Postgres Row Level Security Policy

Comments 1
2 min read
JS Security Tip 05-01-2024 ICYMI

JS Security Tip 05-01-2024 ICYMI

Comments
1 min read
Java URI Library Compliant with RFC 3986

Java URI Library Compliant with RFC 3986

1
Comments
9 min read
Nearly Offline Revocation Status Checks for JWT

Nearly Offline Revocation Status Checks for JWT

2
Comments
2 min read
Implementing AWS Config for your Organization with CloudFormation

Implementing AWS Config for your Organization with CloudFormation

2
Comments
13 min read
Building a Bulletproof CI/CD Pipeline: A Comprehensive Guide

Building a Bulletproof CI/CD Pipeline: A Comprehensive Guide

352
Comments 18
14 min read
📌 AWS Under the Hood - Day 10 - How to Revoke Temporary IAM Credentials if they are Exposed 📌

📌 AWS Under the Hood - Day 10 - How to Revoke Temporary IAM Credentials if they are Exposed 📌

1
Comments
4 min read
Step by Step Troubleshooting WAFv2 - With Pictures

Step by Step Troubleshooting WAFv2 - With Pictures

5
Comments
4 min read
The Future of Bug Logging and Internet Security

The Future of Bug Logging and Internet Security

7
Comments
3 min read
loading...