How RASPs and WAFs can work together
Émile-Hugo
When it comes to security tooling, it can be difficult to tell different acronyms and the approaches they represent apart. In the case of application security for production applications, there…
Introducing the SSRF reference guide: everything you ever wanted to know about SSRF defense
Although the security community has been aware of server-side request forgeries (SSRF) for a while, it’s only since the Capital One breach that they hit mainstream awareness. However, most of…
How to build a WAF at the application layer
Earlier today, we introduced a number of very cool features we just released. You can read more about the major items we introduced in our blog post about the launch.…
Sqreen recently blocked a major ATO attack against ourselves. Here’s how we did it
At Sqreen, our mission is to make security transparent and accessible to everyone. Part of that mission includes sharing what we learn about security and what happens if we get…
How we built V8 natively on ARM
When Amazon released their custom Graviton processor, we knew that ARM needed to be on our radar. Although clearly a first generation product, the investment required to build such a…
How Radix trees made blocking IPs 5000 times faster
To most people, what you learn during a CS degree doesn’t help much in your day to day job. That being said, you sometimes run in a problem which could…