7 HTTP headers to secure your app for the busy web developer
Alexander
Modern web browsers offer a lot of security features aimed at protecting your users from a wide variety of threats such as malware installed on their device, hackers listening to…
From the Archive: Application security from the inside [Presentation at OWASP]
Jb
Today we are sharing a presentation that our CTO Jean-Baptiste Aviat did at the OWASP (Open Web Application Security Project) a couple of months ago. Hackers have several ways to…
Freeze your Python with str.encode and threads
Boris
While working on the sqreen.com Python agent, I discovered a rather nasty, but fun to analyse bug that lead me deep into Python internals. The nasty bug I was working…
Integrating Content Security Policy into your Rails applications
TL; DR Content Security Policy (CSP) is an HTTP response header that restricts the browser to loading external assets such as scripts, styles or media from a wide variety of…
App Security – The painful invisible challenge that we love to hate
Pierre
We fought on the security frontline at Apple for about ten years. Our mission was simple: to attack products using any means necessary and then work on the fixes with development…
Tune your App Performance (and get fit for summer)
Premature optimization is the root of all evil — Donald Knuth
Ruby on Rails Security in your Continuous Integration
Foundations of your development cycle “Never send a human to do a machine’s job ” — Agent Smith How open-source public tools can help improve your software security in your Continuous…
