developer training

OWASP Top 10 API secure code training secure coding developer training Coders Conquer Security application security devsecops

Coders Conquer Security OWASP Top 10 API Series - Injection (SQL/NoSQL/OS Command Injection)

10th December 2020

Almost any API is vulnerable to an injection attack if it accepts client-supplied input without first putting it through a verification or sanitization process.…

Matias Madou

Missions application security application security training scaffolded learning developer training unicode github secure coding data breach data breach simulation devsecops

Introducing Missions: The next phase of developer-centric security training

12th November 2020

We’re thrilled to announce a brand new feature release on the Secure Code Warrior platform: Missions. This all-new challenge category is the next phase in developer-ified security training, moving users from the recall of security knowledge, to applying it in a real-world simulation environment.…

Matias Madou

OWASP Top 10 API developer training secure coding application security training appsec secure coding techniques Coders Conquer Security

Coders Conquer Security OWASP Top 10 API Series - Disabled Security Features/Debug Features Enabled/Improper Permissions

11th November 2020

It’s likely a little more prevalent in APIs, but attackers will often attempt to find unpatched flaws and unprotected files or directories anywhere in a network. Coming across an API that has debugging enabled or security features disabled just makes their nefarious work a little easier.…

Matias Madou

sensei developers developer training IDE application security secure coding techniques secure coding

Adding Parameters to Annotations Using Rewrite Actions

26th October 2020

Learn how to use Sensei to match problematic code patterns and then amend them to agreed implementations with examples of annotation matching.…

Alan Richardson

cybersecurity appsec devsecops application security training developer training government policy

How the Australian Government can build national cybersecurity resilience and stand tall against threats

20th October 2020

It is clear from the Australian Government’s push to get serious about cybersecurity that it has been identified as a key risk area on a national level, but is their strategy reaching far enough?…

Pieter Danhieux

Tags

Coders Conquer Security OWASP Top 10 API Series - Injection (SQL/NoSQL/OS Command Injection)

Introducing Missions: The next phase of developer-centric security training

Coders Conquer Security OWASP Top 10 API Series - Disabled Security Features/Debug Features Enabled/Improper Permissions

Adding Parameters to Annotations Using Rewrite Actions

How the Australian Government can build national cybersecurity resilience and stand tall against threats

Secure coding insights served fresh