Show all Dev DevOps Java JavaScript Node.js Python Ruby Security Sqreen Product How to debug memory leaks in a Node.js application on HerokuApril 18, 2019by Vladimir Introducing a new plugin for making your WordPress more secureApril 11, 2019by Maurice Introducing Application Security Management (and our new funding round!)April 2, 2019by Pierre How to fully leverage your pentestMarch 28, 2019by Jb Security analysis of the top 1000 SaaS companies: we still have a long way to goMarch 20, 2019by Josh 8 security best practices for SaaS startup CTOsMarch 13, 2019by Jb Single-page applications need better auditingMarch 5, 2019by Vladimir How I switched from Ruby to PythonJanuary 30, 2019by Benoit How Radix trees made blocking IPs 5000 times fasterJanuary 15, 2019by Émile-Hugo PyParis 2018December 6, 2018by Janis Giving a voice to JiraDecember 3, 2018by Oscar Baracos Streaming data with Amazon KinesisSeptember 10, 2018by Bartosz Telenczuk WebAssembly vs. the world. Should you use WebAssembly?August 21, 2018by Vladimir ESLint backdoor: revoke all the tokensJuly 12, 2018by Vladimir In code we Struts: in-depth review of a Java vulnerability for developersJune 14, 2018by Sylvain An in-depth look at CVE-2018-8778 or why integer overflows are still a thing!March 30, 2018by Benoit It’s time for transparent securityMarch 23, 2018by Pierre Reflected XSS explained: how to prevent reflected XSS in your appMarch 8, 2018by Jb Context information storage for asyncioFebruary 26, 2018by Vivien CSS best practices for fast-growing SaaS startupsFebruary 2, 2018by FX Bad bots are eating the world. But developers will save us allJanuary 27, 2018by Paul Security analysis of the most popular cryptocurrency exchangesJanuary 25, 2018by Paul Authentication Best Practices for VueJanuary 18, 2018by Thibaud Security.txt toolbox for your Ruby appJanuary 18, 2018by Benoit In ICO, the S stands for SecurityJanuary 11, 2018by Jb Protecting against the command injection vulnerability in Net::FTPDecember 19, 2017by Paul Security for Static WebsitesDecember 19, 2017by Don Goodman-Wilson Single Page Applications and static websites also deserve some securityDecember 12, 2017by Arnaud Breton Monitoring the performance of a Node.js web applicationNovember 21, 2017by Vladimir Sqreen’s got a new logo, what?November 13, 2017by Don Goodman-Wilson State of Node.js Security 2017November 9, 2017by Don Goodman-Wilson SAST, DAST, and RASP: A guide to the new security alphabet soupOctober 11, 2017by Don Goodman-Wilson Poison Packages in PythonSeptember 18, 2017by Don Goodman-Wilson Detecting and blocking bad botsAugust 31, 2017by Matthew Interview: Ricardo Félix – Scaling DevOps at UniplacesAugust 8, 2017by Paul Using the Sqreen Agent without PIIAugust 3, 2017by Don Goodman-Wilson What is SecDevOps and why should you care?July 19, 2017by Matthew Discovering a Cross Site Scripting (XSS) vulnerability in SlimJuly 12, 2017by Benoit Docker Security Best PracticesJune 22, 2017by Matthew Content Security Policy has never been simplerJune 21, 2017by Paul XSS in Vue.jsJune 7, 2017by Thibaud Picking the best JS engine for your Node app’s performanceJune 5, 2017by Vladimir Heroku Security Add-on: Protect your app from attackersJune 1, 2017by Paul The Sqreen API: A New Security Tool for DevelopersMay 10, 2017by Don Goodman-Wilson A journey to Amazon EMR (and Spark)May 3, 2017by Christophe Preventing SQL injections in Ruby (and other vulnerabilities)April 14, 2017by Chris Chinchilla Block SQL injections, not your customersApril 11, 2017by Jb How safe are SaaS products?April 6, 2017by Pierre Optimize your Node app by simply upgrading Node.jsMarch 30, 2017by Vladimir Detecting human hackers in your app with SqreenMarch 28, 2017by Paul Securing Legacy ApplicationsMarch 23, 2017by Matthew Stop using pycrypto. Use pycryptodome insteadMarch 23, 2017by Paul Getting Developers to Care More About SecurityMarch 17, 2017by Matthew When users put your app at risk. The attack surface icebergMarch 16, 2017by Pierre 10 Best Practices to Build Secure ApplicationsMarch 14, 2017by Matthew Interview: Claudiu Popa – Using Pylint for Python Static AnalysisMarch 10, 2017by Paul Behind the Scenes: Building a Dynamic Instrumentation Agent for Node.jsMarch 9, 2017by Vladimir Cybersecurity Risk Assessment for Startup CTOsMarch 6, 2017by François Menet Preventing SQL injections in Python (and other vulnerabilities)February 28, 2017by Chris Chinchilla Anatomy of Cloudflare’s CloudBleed: what you need to know and fixFebruary 24, 2017by Jb 4 Essential Steps to Protect Web ApplicationsFebruary 21, 2017by Matthew OWASP Top 10 Cheat SheetFebruary 16, 2017by Matthew How to build, test and deploy React ApplicationsFebruary 2, 2017by Mohamed Behind the Scenes: Building a Dynamic Instrumentation Agent for PythonJanuary 24, 2017by Boris Web application security: check one of your 2018 resolutions todayJanuary 19, 2017by Pierre Pyramid Security: announcing our Pyramid framework support for PythonJanuary 17, 2017by Boris How to prevent NoSQL injections in MongoDB in a Node.js appJanuary 12, 2017by Vladimir Behind the Scenes: Building a Dynamic Instrumentation Agent for RubyJanuary 11, 2017by Jb Security In 2016 – The Year In ReviewJanuary 9, 2017by Matthew MongoDB will not prevent NoSQL injections in your Node.js appDecember 15, 2016by Vladimir Monitor your application security in New Relic InsightsDecember 9, 2016by Boris Why Web Application Firewalls fail to protect web applicationsNovember 23, 2016by Matthew Identify Tor connections in Node.js with Tor-testNovember 15, 2016by Vladimir How To Choose Your CI ToolNovember 4, 2016by Matthew Tor – the good, the bad, and the uglyNovember 3, 2016by Christophe The SaaS CTO Security ChecklistOctober 25, 2016by Paul The two most common vulnerabilities in Rails (with code)October 10, 2016by Benoit Sqreen at EuRuKo 2016 – Europe’s largest Ruby ConferenceOctober 6, 2016by Paul Sqreen in the finals of TechCrunch Startup BattlefieldSeptember 27, 2016by Paul Announcing Node.JS + Python support and a new interfaceSeptember 16, 2016by Paul One easy way to inject malicious code in any Node.js applicationAugust 22, 2016by Vladimir Embedding JavaScript into PythonAugust 2, 2016by Jb 7 HTTP headers to secure your app for the busy web developerJuly 28, 2016by Alexander From the Archive: Application security from the inside [Presentation at OWASP]July 25, 2016by Jb Freeze your Python with str.encode and threadsJuly 12, 2016by Boris Integrating Content Security Policy into your Rails applicationsJuly 11, 2016by Jb App Security – The painful invisible challenge that we love to hateJuly 8, 2016by Pierre Tune your App Performance (and get fit for summer)July 8, 2016by Jb Ruby on Rails Security in your Continuous IntegrationJuly 7, 2016by Jb The usual (git) flow of Developers Vs. SecurityJuly 7, 2016by Pierre
