DevelopSec @DevelopSec - Twitter Profil

6 bulan yang lalu

Ep. 125: From Flat Tires to AppSec: The Power of Tools and Processes has just been released. Just like changing a flat tire, the right tools, process and knowledge can make all the difference in a successful outcome. https://t.co/r4Egx8maXq

0

74

DevelopSec @DevelopSec

12 bulan yang lalu

Curious about AI security testing? Check out the OWASP AI Testing Guide. https://t.co/qMqoyPaVLp

0

1

0

9

DevelopSec @DevelopSec

lebih dari 1 tahun yang lalu

In the latest episode of the DevelopSec podcast, I dive into a new attack technique: Double-ClickJacking. Here's what you need to know to keep your apps safe! Check out the full episode: https://t.co/cp0JrHgXxK

0

1

0

74

DevelopSec @DevelopSec

lebih dari 1 tahun yang lalu

Just posted Ep. 123: Goals of Security Culture - Sort of? I share some thoughts on how security is a part of everyone's roles and some ideas of how to help build that awareness. https://t.co/fPnK9LMiQM

0

2

0

74

Siapa yang Harus Diikuti

x64dbg

@x64dbg

An open-source x64/x32 debugger for windows.

Manuel Santander

@manuelsantander

SANS Internet Storm Center handler, GIAC Security Expert

DFIR Training

@DFIRTraining

The official DFIR Training account and most complete #DFIR online resource. Managed by @Brett_Shavers.

DevelopSec @DevelopSec

lebih dari 1 tahun yang lalu

Should secure development be part of a developer's required skillset / experience? Ep. 122: Integrating Security Responsibilities into Development has just been released!! Check out the full episode: https://t.co/NXoW3AamqR

0

1

0

82

DevelopSec di-retweet

James Jardine

@james__jardine

sekitar 2 tahun yang lalu

It is no longer just the company paying, ransomware attacks are coming after your money. James: "They are sending out emails directly to those patients, those users and demanding, in this case it was $213 US dollars that they had to pay within 24 hours." Full Video: https://t.co/jary5ApRJi

1

2

0

268

DevelopSec @DevelopSec

sekitar 2 tahun yang lalu

Ep. 121: Evolving Ransomware: Unique Tactics for Payment is now available. Check out some unique tactics we have seen used to collect payment. https://t.co/uzufJhk2JN

0

2

0

84

DevelopSec @DevelopSec

sekitar 2 tahun yang lalu

if you are using Firebase, here is their security checklist: https://t.co/FGTCQc7Ew9

0

1

0

50

DevelopSec @DevelopSec

lebih dari 2 tahun yang lalu

Does the ASP:TextBox TextMode provide input validation? I posted some information about what that attribute does and does not do. https://t.co/lNUZ9dqNVJ

0

1

0

41

DevelopSec @DevelopSec

lebih dari 2 tahun yang lalu

One way to help build secure applications is to hire developers, QA, business analysts, and product owners that have secure development experience. Here are some thoughts on some first steps. https://t.co/A8wku35Ef1

0

1

0

37

DevelopSec @DevelopSec

lebih dari 2 tahun yang lalu

Does your site require HTTPS? It should. While this article cites sensitive info, don't overlook the tampering of responses to inject malicious code. Article: https://t.co/INGUmDFjUQ Insights: https://t.co/IbkIJJfmKR

0

18

DevelopSec @DevelopSec

lebih dari 2 tahun yang lalu

You can access the tool directly at: https://t.co/i9tme6djYr

0

17

DevelopSec @DevelopSec

lebih dari 2 tahun yang lalu

Do you use HAR files for troubleshooting? Whether you are the person receiving the HAR file or sending it, it is important that it doesn't contain sensitive information. Cloudflare has made a HAR sanitizer available. https://t.co/1cjVdyjbK8.

1

0

209

DevelopSec di-retweet

James Jardine

@james__jardine

hampir 3 tahun yang lalu

Stack traces and other error information are often seen as low risk, but there are those outliers where it can be much more. https://t.co/peYCzOb3UN

0

2

0

55

DevelopSec @DevelopSec

hampir 3 tahun yang lalu

We all know about being cautious clicking links in emails, but what about QR codes? https://t.co/b0SqBVQIby

0

1

0

14

DevelopSec @DevelopSec

hampir 3 tahun yang lalu

Curious why you can't just rely on client-side validation? Check out this quick post. https://t.co/Jt3snMdCFf

0

2

0

63

DevelopSec di-retweet

James Jardine

@james__jardine

hampir 3 tahun yang lalu

9 years ago, I started my @DevelopSec Podcast. Ep. 2 was all about passwords. While there is a push to get rid of passwords, much of the ideas I shared haven't changed a whole lot. https://t.co/fqFJfx9NMq

0

1

0

21

DevelopSec @DevelopSec

sekitar 3 tahun yang lalu

Private secrets, keys and tokens are a common issue in code repositories. GitHub just added a feature to help detect/block these on push requests. https://t.co/DB7pXFTiIm #cybersecurity, #appsec

0

14

DevelopSec @DevelopSec

sekitar 3 tahun yang lalu

https://t.co/hRAHNiw7Dt #cybersecurity, #appsec

0

23

DevelopSec @DevelopSec

sekitar 3 tahun yang lalu

Private secrets, keys and tokens are a common issue in code repositories. GitHub just added a feature to help detect/block these on push requests.

1

0

25

DevelopSec

@DevelopSec

Siapa yang Harus Diikuti

Pengguna Terakhir Terlihat di Sotwe

Tren untuk Anda

Pengguna Paling Populer