Security best practices for your Heroku app
Paul
When it comes to hosting your apps on Heroku, it’s important to consider security. As a Platform-as-a-service (PaaS) provider, Heroku handles many things for you, but it’s important to understand…
On-demand webinar: Securing your Go application with Sqreen
Update: Go to this link to watch the webinar After releasing the first Runtime Application Self-Protection (RASP) for Go a few months ago, we’re excited to host a Go application security webinar. …
Introducing Sqreen for Go: the first Runtime Application Self-Protection (RASP) for Go
It’s not a secret that the world of software development is going through some massive changes: the increasing speed of releases, the advent of microservices and distributed infrastructures, and more.…
Bad bots are eating the world. But developers will save us all
Scrapers or bad bot protection is a big topic for a lot of company departments. However, it’s always developers or DevOps that end up implementing a bad bot mitigation solution.…
Security analysis of the most popular cryptocurrency exchanges
So you’ve finally decided to buy some Bitcoin, Ethereum or any other coin that’s all the rage these days? At Sqreen, we’re not so much interested in the cryptocurrency craze,…
Protecting against the command injection vulnerability in Net::FTP
Last week a vulnerability affecting Net::FTP, part of Ruby standard library, was uncovered by Etienne Stalmans (Great job 🙌) from the Heroku product security team. This article will explain the vulnerability and…
Interview: Ricardo Félix – Scaling DevOps at Uniplaces
I sat down with Ricardo Félix, the lead DevOps Engineer at Uniplaces to talk about DevOps best practices for startups. Uniplaces is the leading online marketplace for booking student accommodation…
Content Security Policy has never been simpler
Application security is about adding extra layers of protection. One easy win is to add a Content Security Policy (CSP) to your web application’s headers. What is a CSP?…
Heroku Security Add-on: Protect your app from attackers
You use Heroku because you want to get your apps into the cloud without having to worry about the hassles of infrastructure. Unfortunately, you haven’t been worrying too much about…
Detecting human hackers in your app with Sqreen
If you’re a developer, a CTO or a DevOps, how can you identify attackers in your user base before they exploit a vulnerability in your application? As soon as you…