application security

developer training integrations confidentiality plugins IDE application security application security training secure code secure code warrior jira github

“Stop disrupting my workflow!” How you can get the right security training at the right time

1st July 2020

We started to think about what we could do to reduce the barrier to getting training when you need it, and how micro-learning could be implemented into your workflow in a more seamless way.…

Matias Madou

secure coding appsec devsecops application security application security training secure software development developers rust systems programming

Rust is the most-loved programming language for the fifth time. Is it our new security savior?

18th June 2020

Rust incorporates known and functional elements from commonly used languages, working to a different philosophy that disposes of complexity, while introducing performance and safety.…

Matias Madou

infrastructure as code Coders Conquer Security application security appsec developer training secure software development secure coding secure coding techniques

Coders Conquer Security Infrastructure as Code Series - Using Components From Untrusted Sources

15th June 2020

The vulnerability-inducing behavior that we are going to focus on here is using code from untrusted sources, a seemingly benign practice that is causing big problems.…

Matias Madou

infrastructure as code Coders Conquer Security secure code secure coding application security application security training devsec devsecops

Coders Conquer Security Infrastructure as Code Series: Security Misconfiguration - Improper Permissions

8th June 2020

Security misconfigurations, especially those of the improper permissions variety, most often happen whenever a developer creates a new user or grants permission for an application as a tool in order to accomplish a task.…

Matias Madou

infrastructure as code Coders Conquer Security secure code secure coding application security application security training devsec devsecops ITLP

Coders Conquer Security Infrastructure as Code Series: Insufficient Transport Layer Protection

1st June 2020

At times, applications will also share data with other programs as part of an overall workload. Unless the transport layer is protected, it makes it vulnerable to both outside snooping and unauthorized internal viewing.…

Matias Madou

Tags

“Stop disrupting my workflow!” How you can get the right security training at the right time

Rust is the most-loved programming language for the fifth time. Is it our new security savior?

Coders Conquer Security Infrastructure as Code Series - Using Components From Untrusted Sources

Coders Conquer Security Infrastructure as Code Series: Security Misconfiguration - Improper Permissions

Coders Conquer Security Infrastructure as Code Series: Insufficient Transport Layer Protection

Secure coding insights served fresh