Appsec

👋 Sign in for the ability to sort posts by relevant, latest, or top.

Maria

Mar 13

SCA or SAST - How They Complement Each Other for Stronger Security?

#softwaredevelopment #softwarecompositionanalysis #securesoftwaredevelopement #appsec

1 min read

Vamsi NC

Mar 12

Security is a risk function

#security #appsec #practicalsecurity #applicableappsec

1 min read

Yurii Denchyk

Mar 6

Hook, Hack, Defend: Frida’s Impact on Mobile Security & How to Fight Back

#cybersecurity #mobile #appsec #android

1 min read

Yurii Denchyk

Feb 20

Exclusive Research: Unlocking Reliable Crash Tracking with PLCrashReporter for iOS SDKs

#appsec #cybersecurity #mobile #ios

3 min read

SHUBHENDU SHUBHAM

Feb 6

Why Current Methods Fail to Measure Real Vulnerability Risks?

#security #cybersecurity #sast #appsec

2 min read

Mohamed AboElKheir

Jan 22

How Reachability Analysis 🔎 can help with open source vulnerabilities mess (Coana as an example)

#appsec #security #cybersecurity #design

10 min read

Mohamed AboElKheir

Jan 20

Lessons Learned #4: One error message could expose all your data (FileSender CVE-2024–45186)

#appsec #security #cybersecurity #design

5 min read

Mohamed AboElKheir

Jan 19

Lessons Learned #3: Is your random UUID really random? (Account takeover with the sandwich 🥪 attack)

#appsec #security #cybersecurity #design

7 min read

Jonathan Santilli

Jan 17

Leveraging Large Language Models for Cross-Component Vulnerability Detection

#ai #llm #appsec

3 min read

johan sydseter for OWASP® Foundation

Feb 14

How to pass the OWASP MASVS verification by design

#appsec #mobile #cybersecurity #security

6 min read

Jonathan Santilli

Jan 7

SQL Injection: the vulnerability that refuses to die

#appsec #coderemediation #sast #ai

4 min read

Jonathan Santilli

Jan 1

Access Control Security: Learning from Major Data Breaches

#securityengineering #owasp #cybersecurity #appsec

5 min read

Nitin Kumar

Dec 15 '24

My VAPT Learning Journey

#vapt #cybersecurity #appsec #learning

3 min read

Mohamed AboElKheir

Sep 25 '24

Lessons Learned #2: Your new feature could introduce a security vulnerability to your old feature (Clickhouse CVE-2024-22412)

#appsec #security #cybersecurity #design

4 min read

Pynt.io

Oct 21 '24

Why Security Misconfigurations Matter and 5 Ways to Prevent Them

#api #security #pynt #appsec

1 min read

Pynt.io

Oct 13 '24

API Security Tools: Threat Protection vs. Testing & 8 Tools to Know

#api #cybersecurity #apisecurity #appsec

1 min read

Pynt.io

Oct 13 '24

API Security: Threats, Tools, and Best Practices

#appsec #infosec #owasp #api

1 min read

bfuller

Sep 3 '24

Prevention: It's Time to Save Those Millions

#devops #appsec #security #operations

2 min read

aliv

Aug 13 '24

Introducing Omni4J: Secure your Java code

#java #appsec #softwaredevelopment #security

2 min read

Dwayne McDaniel for GitGuardian

Sep 6 '24

DEF CON 32: What We Learned About Secrets Security at AppSec Village

#defcon #appsec #security #cybersecurity

9 min read

Mohamed AboElKheir

Sep 3 '24

Lessons Learned #1: One line of code can make your application vulnerable (Pre-Auth RCE in Metabase CVE-2023–38646)

#security #cybersecurity #design #appsec

4 min read

brmartin | Bruno Martins

Jul 12 '24

Compreendendo o SAMM

#owasp #samm #appsec

6 min read

maz4l

Jul 10 '24

Web Security and Bug Bounty Hunting: Knowledge, Tools, and Certifications

#bugbountyhunter #ethicalhacking #webdev #appsec

3 min read

maz4l

Jul 10 '24

Understanding the Distinction Between Information Security and Cybersecurity

#infosec #cybersecurity #webdev #appsec

2 min read

Ivan Piskunov

Apr 16 '24

Secure SDLC (Part 1): issues, approach, tech metrics, team’s KPI

#devsecops #sdlc #appsec #asoc

6 min read

Forem

# appsec

SCA or SAST - How They Complement Each Other for Stronger Security?

Security is a risk function

Hook, Hack, Defend: Frida’s Impact on Mobile Security & How to Fight Back

Exclusive Research: Unlocking Reliable Crash Tracking with PLCrashReporter for iOS SDKs

Why Current Methods Fail to Measure Real Vulnerability Risks?

How Reachability Analysis 🔎 can help with open source vulnerabilities mess (Coana as an example)

Lessons Learned #4: One error message could expose all your data (FileSender CVE-2024–45186)

Lessons Learned #3: Is your random UUID really random? (Account takeover with the sandwich 🥪 attack)

Leveraging Large Language Models for Cross-Component Vulnerability Detection

How to pass the OWASP MASVS verification by design

SQL Injection: the vulnerability that refuses to die

Access Control Security: Learning from Major Data Breaches

My VAPT Learning Journey

Lessons Learned #2: Your new feature could introduce a security vulnerability to your old feature (Clickhouse CVE-2024-22412)

Why Security Misconfigurations Matter and 5 Ways to Prevent Them

API Security Tools: Threat Protection vs. Testing & 8 Tools to Know

API Security: Threats, Tools, and Best Practices

Prevention: It's Time to Save Those Millions

Introducing Omni4J: Secure your Java code

DEF CON 32: What We Learned About Secrets Security at AppSec Village

Lessons Learned #1: One line of code can make your application vulnerable (Pre-Auth RCE in Metabase CVE-2023–38646)

Compreendendo o SAMM

Web Security and Bug Bounty Hunting: Knowledge, Tools, and Certifications

Understanding the Distinction Between Information Security and Cybersecurity

Secure SDLC (Part 1): issues, approach, tech metrics, team’s KPI