DEV Community

Security

Hopefully not just an afterthought!

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
How to Secure your NodeJs Express Javascript Application - part 2

How to Secure your NodeJs Express Javascript Application - part 2

14
Comments
5 min read
What are policies and how do you use them with CloudQuery?

What are policies and how do you use them with CloudQuery?

4
Comments
6 min read
Authenticate third-party API's in Next.js using HttpOnly cookies and axios interceptors

Authenticate third-party API's in Next.js using HttpOnly cookies and axios interceptors

10
Comments
7 min read
User Office Hours: Introduction to Snyk Code

User Office Hours: Introduction to Snyk Code

Comments
1 min read
Cyber Security: A run through.

Cyber Security: A run through.

47
Comments 6
6 min read
AWS CLI - do it right

AWS CLI - do it right

12
Comments
9 min read
Creating a Certificate Authority for testing with Azure Container Instances

Creating a Certificate Authority for testing with Azure Container Instances

6
Comments
7 min read
Managing service accounts with Terraform for GCP

Managing service accounts with Terraform for GCP

3
Comments
2 min read
AWS Cognito JWT Verification

AWS Cognito JWT Verification

3
Comments
1 min read
Managing Access Tokens in React or React Native with Axios and Context API.

Managing Access Tokens in React or React Native with Axios and Context API.

7
Comments
2 min read
How to securely use Google API service account credentials in a public repo

How to securely use Google API service account credentials in a public repo

9
Comments
3 min read
Win free swag by fixing security vulnerabilities

Win free swag by fixing security vulnerabilities

7
Comments 1
2 min read
What causes imposter syndrome among software developers?

What causes imposter syndrome among software developers?

7
Comments
2 min read
The One Hash Function You Need, BCrypt

The One Hash Function You Need, BCrypt

6
Comments
5 min read
Custom SSL Certificates for Your Dev Environment

Custom SSL Certificates for Your Dev Environment

9
Comments 1
3 min read
Why does my app send network requests when I open an SVG file?

Why does my app send network requests when I open an SVG file?

5
Comments
9 min read
Stop AWS Account Hacks

Stop AWS Account Hacks

22
Comments 3
4 min read
Injecting backdoors to NPM packages

Injecting backdoors to NPM packages

42
Comments 1
6 min read
7 Must-Haves For Ultimate AWS Security

7 Must-Haves For Ultimate AWS Security

6
Comments
1 min read
How to use a secure private NuGet source in Visual Studio or JetBrains Rider

How to use a secure private NuGet source in Visual Studio or JetBrains Rider

20
Comments 1
5 min read
Securing RMarkdown Documents

Securing RMarkdown Documents

5
Comments
1 min read
A Complete Explanation to DevSecOps

A Complete Explanation to DevSecOps

2
Comments
1 min read
'Code injection' in AWS CodePipeline

'Code injection' in AWS CodePipeline

7
Comments 6
4 min read
Create a React App with Biometric Authentication

Create a React App with Biometric Authentication

7
Comments
7 min read
Use ZAP to Perform DAST (Dynamic Application Security Testing)

Use ZAP to Perform DAST (Dynamic Application Security Testing)

8
Comments 1
5 min read
Security and Correctness: two different concepts.

Security and Correctness: two different concepts.

5
Comments
4 min read
How to Safely Share Passwords and Secrets Codes Online

How to Safely Share Passwords and Secrets Codes Online

4
Comments
3 min read
When Package Dependencies Become Problematic

When Package Dependencies Become Problematic

6
Comments
6 min read
AWS Inspector and AWS Config - step by step towards more security

AWS Inspector and AWS Config - step by step towards more security

3
Comments
5 min read
Add Password Protection to Any Site with OAuth2 Proxy - Plus Social Logins

Add Password Protection to Any Site with OAuth2 Proxy - Plus Social Logins

2
Comments
7 min read
Secure your cloud with Cloudsploit!

Secure your cloud with Cloudsploit!

11
Comments
7 min read
Why PyPI Doesn't Know Your Projects Dependencies but Thoth Does

Why PyPI Doesn't Know Your Projects Dependencies but Thoth Does

7
Comments
5 min read
Hashing a Password in NodeJs

Hashing a Password in NodeJs

3
Comments
1 min read
Environment Variables in Python

Environment Variables in Python

6
Comments
1 min read
Sessions: cookies vs localStorage - which one to use when

Sessions: cookies vs localStorage - which one to use when

8
Comments
3 min read
Firewall: Egress Filtering with ufw

Firewall: Egress Filtering with ufw

5
Comments
4 min read
Effective Session Management using Supertokens

Effective Session Management using Supertokens

134
Comments 3
7 min read
Vulnerabilities due to XML files processing: XXE in C# applications in theory and in practice

Vulnerabilities due to XML files processing: XXE in C# applications in theory and in practice

7
Comments
18 min read
Scan and secure AWS Lambda credentials like a pro!

Scan and secure AWS Lambda credentials like a pro!

7
Comments
3 min read
Amazon CloudFront 🌩️ - An Global Edge Network

Amazon CloudFront 🌩️ - An Global Edge Network

14
Comments
2 min read
Add Hongkong Post Root CA certificate to Java keystore

Add Hongkong Post Root CA certificate to Java keystore

6
Comments
1 min read
Coordinated vulnerability disclosure (CVD) for open source projects

Coordinated vulnerability disclosure (CVD) for open source projects

11
Comments 3
9 min read
Automated attack synthesis by extracting protocol FSMs from RFCs

Automated attack synthesis by extracting protocol FSMs from RFCs

13
Comments 2
8 min read
Web Cache Deception

Web Cache Deception

5
Comments
1 min read
Kubernetes Cluster Authentication using AWS IAM

Kubernetes Cluster Authentication using AWS IAM

7
Comments
3 min read
Reconnaissance with OSINT technologies

Reconnaissance with OSINT technologies

6
Comments
1 min read
Create Biometric-Powered Login Pages in Vue.js

Create Biometric-Powered Login Pages in Vue.js

14
Comments
7 min read
Supabase Date Protection on PostgreSQL

Supabase Date Protection on PostgreSQL

12
Comments
3 min read
Unsung HERO - AWS SG

Unsung HERO - AWS SG

20
Comments
3 min read
OpenAPI Security

OpenAPI Security

3
Comments
2 min read
All Things Security - Dockerizing Django for Deploying Anywhere

All Things Security - Dockerizing Django for Deploying Anywhere

26
Comments
11 min read
NodeSecure - What's new in 2022 ?

NodeSecure - What's new in 2022 ?

11
Comments
3 min read
A BadUSB that isn't so bad: Making a keystroke injector in Arduino that automates GatherTown movements

A BadUSB that isn't so bad: Making a keystroke injector in Arduino that automates GatherTown movements

6
Comments
1 min read
How to take backup of a database through SSH tunneling

How to take backup of a database through SSH tunneling

7
Comments
2 min read
The computer can’t update with «Update and shut down» or «Update and restart» in Windows 10, how to fix it?

The computer can’t update with «Update and shut down» or «Update and restart» in Windows 10, how to fix it?

2
Comments
5 min read
A quick auth0/express/heroku setup

A quick auth0/express/heroku setup

5
Comments 1
1 min read
What are MetaMask "Accounts" or "Sub-Accounts"? And why are they not as private as they are supposed to be?

What are MetaMask "Accounts" or "Sub-Accounts"? And why are they not as private as they are supposed to be?

2
Comments
4 min read
How to fix the error «The file or directory is corrupted and unreadable»?

How to fix the error «The file or directory is corrupted and unreadable»?

2
Comments
5 min read
Implementing a safe and sound API Key authorization middleware in Go

Implementing a safe and sound API Key authorization middleware in Go

13
Comments 1
8 min read
How to troubleshoot CORS Preflight / Options errors in 2022

How to troubleshoot CORS Preflight / Options errors in 2022

5
Comments
2 min read
loading...