The SaaS CTO Security Checklist
Paul
Today we are really excited to launch The SaaS CTO Security Checklist. The idea for the SaaS CTO Security Checklist came after talking to tens of startup CTOs. Most CTOs…
Browsing Category
Security
119 posts
The two most common vulnerabilities in Rails (with code)
Benoit
Ruby on Rails is one of the most popular frameworks used to create web applications. It’s very easy to start using it; it shines to do any kind of non-trivial…
One easy way to inject malicious code in any Node.js application
Vladimir
tl;dr This article describes a method of injecting arbitrary code in Node.js modules. It does not encourage unethical behavior. The chain used to include instances of modules can be tampered to…
7 HTTP headers to secure your app for the busy web developer
Alexander
Modern web browsers offer a lot of security features aimed at protecting your users from a wide variety of threats such as malware installed on their device, hackers listening to…
From the Archive: Application security from the inside [Presentation at OWASP]
Jb
Today we are sharing a presentation that our CTO Jean-Baptiste Aviat did at the OWASP (Open Web Application Security Project) a couple of months ago. Hackers have several ways to…
Integrating Content Security Policy into your Rails applications
TL; DR Content Security Policy (CSP) is an HTTP response header that restricts the browser to loading external assets such as scripts, styles or media from a wide variety of…
App Security – The painful invisible challenge that we love to hate
Pierre
We fought on the security frontline at Apple for about ten years. Our mission was simple: to attack products using any means necessary and then work on the fixes with development…
Ruby on Rails Security in your Continuous Integration
Foundations of your development cycle “Never send a human to do a machine’s job ” — Agent Smith How open-source public tools can help improve your software security in your Continuous…
