Sqreen Blog - Page 2 of 19 - The Official Sqreen Blog

Security

7 minute read
No comments

The different types of cross-site scripting (XSS)

Omkar Hiremath
January 19, 2021

Cross-site scripting (XSS) is one of the most dangerous vulnerabilities in web applications. It is a client-side script injection technique that attackers can use to steal information or send malicious…

View Post

Sqreen Product

8 minute read
No comments

Sqreen’s architecture through the ages: part one

Benoit
January 14, 2021

Sqreen’s architecture has evolved a lot over the years. As one of the main protagonists in all these changes, I’m often asked about the previous steps we took and the…

View Post

Security

5 minute read
No comments

How RASPs and WAFs can work together

Émile-Hugo
January 12, 2021

When it comes to security tooling, it can be difficult to tell different acronyms and the approaches they represent apart. In the case of application security for production applications, there…

View Post

Security

7 minute read
No comments

Remote code execution (RCE), explained: what it is and how to prevent it

Tsviatko Yovtchev
January 7, 2021

Remote code execution (RCE) is a class of software security flaws/vulnerabilities. RCE vulnerabilities will allow a malicious actor to execute any code of their choice on a remote machine over…

View Post

Node.js

8 minute read
No comments

Top 11 Node.js security best practices

Dawid Ziolkowski
January 5, 2021

Node.js is extremely popular nowadays, primarily as a backend server for web applications. However, in the world of microservices, you can find it pretty much everywhere, playing different and important…

View Post

5 minute read
No comments

Application security for GraphQL: how is it different?

Vladimir
December 21, 2020

GraphQL is one of the hottest topics in the API world right now. It provides an abstraction layer over more traditional HTTP communications, and has changed the way we build…

View Post

Security

6 minute read
No comments

Serverless security: how do you protect what you aren’t able to see?

Jb
December 17, 2020

Serverless security is a fascinating topic. As more organizations move to distributed architectures and new ways of running their services, new security considerations arise. I spoke about this topic at…

View Post

Security

7 minute read
No comments

SQL injection, explained: what it is and how to prevent it

Carlos Schults
December 15, 2020

A SQL injection is a security attack that is as dangerous as it is ingenious. By abusing the data input mechanisms of an application, an attacker can manipulate the generated…

View Post

4 minute read
No comments

How to use frameworks to implement your Security Paved Road

Jb
December 10, 2020

I recently sat down with Sr. Research Lead at Synopsys and framework specialist, Ksenia Peguero, on Episode 2 of the AppSec Builders Podcast. In the episode, “Framework Security with Ksenia…

View Post

Security

6 minute read
No comments

Scaling security in a high growth company: our journey at Sqreen

Jb
December 8, 2020

Five years after founding Sqreen, many things have tremendously changed. One of them is our approach to security. It’s often said that security is a journey without end. That it’s…

View Post