Top Tweets for #APPsec
DeepSecrets 2.0 achieves 93% recall and 69% precision, uncovering hidden secrets beyond regex detection with semantic analysis and SARIF support.
#security #appsec #secretsdetection
Read the full article below ๐
https://t.co/oPMYU1s3NN
Everybody Is Vibe #Coding But Nobody Told the #Security Team
https://t.co/wrVitYm5aS
@SecurityWeek #tech #digital #innovation #code #appsec #SDLC #business #leadership #governance #automation #CISO #CIO #CTO #CDO #vibecoding #developers #genAI #AgenticAI #AIrisks #cybersecurity
๐จWe are still looking for a few great volunteers to assist us at the Global AppSec EU Conference next month!ย If you are looking for ways to get involved and earn a free conference ticket ๐๏ธ, sign up today!
https://t.co/d6EzDUhkTp
#OWASP #AppSec #Cybersecurity #DevSecOps #25Years
Security through obscurity isnโt real security.
If your system becomes vulnerable once attackers discover how it works, it was never secure in the first place.
#CyberSecurity #InfoSec #AppSec
Everybody Is Vibe #Coding But Nobody Told the #Security Team
https://t.co/dVYohhmqTA
@SecurityWeek #tech #digital #innovation #code #coders #appsec #SDLC #business #leadership #governance #automation #CISO #CIO #CTO #CDO #vibecoding #developers #genAI #AgenticAI #AIrisks #data #datasecurity #cybersecurity
A solid directory of 1,000+ security tools, neatly categorized from open-source utilities to enterprise solutions.
- Perfect for mapping out your testing stack.
Check out: https://t.co/1fO3uhzdSk
#Cybersecurity #BugBountyTips #AppSec #Infosec
Which security jobs does AI take โ and which can't it?
@ShanKulkarni of @Nullify draws the line: AI wins on triage, exploit validation & remediation. Humans keep threat modeling, design reviews & turning business risk into strategy.
https://t.co/WlEyvR6Vi7
#AppSec #AIagents
Supply chain attacks keep getting โsophisticatedโ because we still treat build scripts like sacred text. If curl | bash is your deployment strategy, donโt act shocked when an attacker ships themselves to prod. #AppSec #SupplyChainSecurity
One empty header = instant admin. CVE-2026-25555 hits OpenBullet2 0.3.2 with a critical auth bypass (9.3) in the X-Api-Key middleware, letting unauthenticated attackers own the API with zero effort. ๐ Patch or lock it down now.
#appsec #cybersecurity
https://t.co/XqygRYZsPZ
Amazing theoretical tutorial on TCP/IP model, by @kunalstwt. Learned about:
- DHCP,
- NAT's,
- Control Planes,
- and Middles boxes etc.
#networking #computernetworks #devops #appsec
ServiceNow unauthenticated API vulnerability update on KB3067321 investigations https://t.co/oEZqX9vTyU #appsec
How You Actually Secure Systems: Using OWASP and NIST Together https://t.co/3gZNB3A3Nj #appsec
A Fake Bug Report Hijacks Your AI Coding Agent https://t.co/dK8c9HhdKW #appsec
They verify your login in client-side JavaScript, never on the server. So you can walk right in.
New write-up: Client-side Authentication Bypass. 4 real cases (one led to a $4,000 SQLi):
https://t.co/XYNTSx2t6q
#BugBounty #AppSec #InfoSec #BarracksArmy
A handy GitHub repository that curates hundreds of open-source web security scanners and testing tools in one place.
Useful for bug bounty hunters, pentesters, AppSec engineers, and security researchers.
Source: https://t.co/U1K2INncCQ
#CyberSecurity #BugBounty #AppSec #Pentesting #InfoSec #OpenSource
Enterprises know #AI-generated #code is vulnerable; they're shipping it anyway
https://t.co/2CxmPbX6Vf
#tech #AI #genAI #AgenticAI #digital #innovation #appsec #developers #devops #leadership #SDLC #devsecops #vibecoding #CISO #CIO #CTO #CDO #coding
@InfoWorld @Taryn_Plumb
VAmPI: A Vulnerable API Designed for OWASP API Security Training and Testing ๐ก๏ธ๐
๐ฅ VAmPI โ Vulnerable API for Learning and Security Testing
๐ https://t.co/1uOTYURFBK
#APISecurity #OWASP #BugBounty #CyberSecurity #Pentesting #AppSec #API #OpenSource #EthicalHacking
XVWA: A Deliberately Vulnerable Web Application for Learning Offensive Web Security ๐ก๏ธ๐
๐ https://t.co/LG9ZgT0SAH
#WebSecurity #CyberSecurity #BugBounty #Pentest #OWASP #XVWA #AppSec
Code review for security: look for string concatenation in queries, unsanitised output to HTML, hardcoded secrets, insecure deserialization, missing authorisation checks, and unsafe use of eval. These seven patterns cause most AppSec vulnerabilities. #CodeReview #AppSec
Last Seen Hashtags on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.4M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.1M followers
Taylor Swift
@taylorswift13
80.9M followers
Lady Gaga
@ladygaga
72.5M followers
Kim Kardashian
@kimkardashian
69.5M followers
Virat Kohli
@imvkohli
69M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.6M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.2M followers