Devsecurely

How to win money and influence your superiors

Devsecurely — Wed, 16 Oct 2024 06:03:43 +0000

When I understood this simple concept, I was able to become a beast. I used to be a pentester for a consultancy firm. And every year, they gave me...

The post How to win money and influence your superiors appeared first on Devsecurely.

Protecting your baby: The SAFER Framework for Secure Coding

Devsecurely — Mon, 23 Sep 2024 08:25:11 +0000

In that dimly lit hospital room, I lifted that small and fragile baby. Even though my wife just gave birth to him, I instinctively loved him. I vowed to...

The post Protecting your baby: The SAFER Framework for Secure Coding appeared first on Devsecurely.

Password policy: a complete guide to protecting your users

Devsecurely — Fri, 30 Aug 2024 20:26:55 +0000

Some break-ins happened in your neighborhood. So, you decided to turn your house into a fortress. You fortified the walls, installed alarm systems on all the windows and bought...

The post Password policy: a complete guide to protecting your users appeared first on Devsecurely.

A complete guide to secure user account management

Devsecurely — Fri, 30 Aug 2024 09:36:19 +0000

Imagine putting on a fake mustache, stepping into a company pretending to be the CEO, and firing everyone. Or, imagine putting on a sexy grin, going into MI6 offices...

The post A complete guide to secure user account management appeared first on Devsecurely.

A complete guide to secure password storage

Devsecurely — Thu, 04 Jul 2024 16:34:06 +0000

I was staring blankly at my screen in disbelief. My heart was racing, and my fingers were shaking. My alarm clock was ringing, but it didn’t even make me...

The post A complete guide to secure password storage appeared first on Devsecurely.

CORS: the ultimate guide

Devsecurely — Mon, 03 Jun 2024 16:41:16 +0000

Imagine visiting a website showing innocent kitten pictures. But behind all those cute feline creatures hides this website’s superpower. As soon as someone visits this website, the owner of...

The post CORS: the ultimate guide appeared first on Devsecurely.

Lock Down Your Admin Area: How to Control Access for Maximum Security

Devsecurely — Mon, 27 May 2024 13:53:48 +0000

The white house situation room is the pinnacle of power in the USA and in the world. There, the president gets his security briefings, and from there he can...

The post Lock Down Your Admin Area: How to Control Access for Maximum Security appeared first on Devsecurely.

The simple 3 step process to reduce your network exposure

Devsecurely — Fri, 24 May 2024 16:19:43 +0000

In an n-tier architecture application, a client communicates with at least one service. This target service is hosted on a particular server. Let us take a web application as...

The post The simple 3 step process to reduce your network exposure appeared first on Devsecurely.

7 tips to make your upload API hack proof

Devsecurely — Fri, 17 May 2024 08:46:35 +0000

If you allow users to upload files, you need to make sure your website is secure against common file upload attacks. This post helps you identify potential issues and...

The post 7 tips to make your upload API hack proof appeared first on Devsecurely.

How RCE Vulnerabilities Spell Disaster for Websites and Companies

Devsecurely — Tue, 30 Apr 2024 07:44:37 +0000

Remote Code Execution (RCE) is a category of vulnerabilities. These allow an attacker to execute system commands on the server. A lot of vulnerabilities allow direct system command execution....

The post How RCE Vulnerabilities Spell Disaster for Websites and Companies appeared first on Devsecurely.