Jb

20 posts

Jean-Baptiste Aviat spent half a decade hunting vulnerabilities at Apple, helping developers solve them, and developing security software. He is now CTO at Sqreen.

Security

2 minute read
No comments

Introducing the AppSec Builders Podcast

Jb
October 14, 2020

I’m very excited to announce that I am launching and hosting AppSec Builders a podcast created especially for practitioners building modern application security. Today, the security podcast world is filled…

View Post

Sqreen Product

6 minute read
No comments

Vulnerability disclosure: finding a vulnerability in Sqreen’s PHP agent and how we fixed it

Jb
September 10, 2020

In June, I was personally contacted by a security researcher who had discovered a vulnerability in one component of the Sqreen PHP agent. This vulnerability would allow a bad actor…

View Post

Sqreen Product

7 minute read
No comments

Welcoming Nuno, Sqreen’s VP of Engineering

Jb
June 30, 2020

In April 2020, we welcomed Nuno Antunes as Sqreen’s VP of Engineering. As a CTO, welcoming a VPE is something unique, and I’ll describe my experience in a later blog…

View Post

Security

4 minute read
No comments

Panel discussion: security for B2B scale-ups

Jb
April 9, 2020

At B2B Rocks 2019, I took part in a panel discussion titled “How to Shape the Most Reliable and Secure Tech.” We had an interesting talk about how B2B companies…

View Post

Sqreen is an RSA Innovation Sandbox 2020 finalist

Sqreen Product

1 minute read
No comments

Sqreen is an RSA Conference 2020 Innovation Sandbox Contest finalist

Jb
February 5, 2020

I’m excited to share a brief bit of news: Sqreen has been named one of the 10 finalists for the RSA Conference 2020 Innovation Sandbox Contest! On Monday, February 24th,…

View Post

Security

7 minute read
No comments

APIDays 2019: RASP for APIs and microservices

Jb
December 12, 2019

This week, I had the opportunity to speak at APIDays in Paris. As is often the case, APIDays was frequented by a super interesting mix of technologists, looking for the…

View Post

Dev
Security

70 views
10 minute read
2 comments

Getting security to scale: learnings from modern app sec teams

Jb
June 6, 2019

Why are we writing this? In April, I visited the Bay Area from Paris for a week with some members of my team. While we were there, we sat down…

View Post

60 views
9 minute read
One comment

Building a dynamic instrumentation agent for PHP

Jb
April 29, 2019

TL;DR PHP instrumentation can be handled in many ways. When we built our PHP agent at Sqreen we made a series of architectural decisions that enabled us to maximize performance,…

View Post

Security

59 views
12 minute read
No comments

How to fully leverage your pentest

Jb
March 28, 2019

Before co-founding Sqreen, I spent years stressing applications both from the outside (as a security consultant) and from the inside (as part of Apple’s Red Team). As a result, I’m…

View Post

Security

38 views
7 minute read
3 comments

8 security best practices for SaaS startup CTOs

Jb
March 13, 2019

As the technology decision makers for SaaS startups, we CTOs are a burdened lot. We need to constantly balance agility, security, and regulatory compliances. Figuring out the right balance of…

View Post