Sqreen Blog
  • Docs
Sqreen Blog

The Official Sqreen Blog

  • Docs
  • Java
  • Security
  • 7 minute read
  • No comments

Preventing SQL injections in Java (and other vulnerabilities)

  • Carlos Schults
  • January 21, 2021
One of the most common types of attack an application can suffer is what we call SQL injections. Since SQL injection attacks are both common and potentially devastating, it’s essential…
View Post
  • Security
  • 7 minute read
  • No comments

The different types of cross-site scripting (XSS)

  • Omkar Hiremath
  • January 19, 2021
Cross-site scripting (XSS) is one of the most dangerous vulnerabilities in web applications. It is a client-side script injection technique that attackers can use to steal information or send malicious…
View Post
  • Sqreen Product
  • 8 minute read
  • No comments

Sqreen’s architecture through the ages: part one

  • Benoit
  • January 14, 2021
Sqreen’s architecture has evolved a lot over the years. As one of the main protagonists in all these changes, I’m often asked about the previous steps we took and the…
View Post
  • Security
  • 5 minute read
  • No comments

How RASPs and WAFs can work together

  • Émile-Hugo
  • January 12, 2021
When it comes to security tooling, it can be difficult to tell different acronyms and the approaches they represent apart. In the case of application security for production applications, there…
View Post
  • Security
  • 7 minute read
  • No comments

Remote code execution (RCE), explained: what it is and how to prevent it

  • Tsviatko Yovtchev
  • January 7, 2021
Remote code execution (RCE) is a class of software security flaws/vulnerabilities. RCE vulnerabilities will allow a malicious actor to execute any code of their choice on a remote machine over…
View Post
  • Node.js
  • 8 minute read
  • No comments

Top 11 Node.js security best practices

  • Dawid Ziolkowski
  • January 5, 2021
Node.js is extremely popular nowadays, primarily as a backend server for web applications. However, in the world of microservices, you can find it pretty much everywhere, playing different and important…
View Post
  • Node.js
  • Security
  • 5 minute read
  • No comments

Application security for GraphQL: how is it different?

  • Vladimir
  • December 21, 2020
GraphQL is one of the hottest topics in the API world right now. It provides an abstraction layer over more traditional HTTP communications, and has changed the way we build…
View Post
Serverless security
  • Security
  • 6 minute read
  • No comments

Serverless security: how do you protect what you aren’t able to see?

  • Jb
  • December 17, 2020
Serverless security is a fascinating topic. As more organizations move to distributed architectures and new ways of running their services, new security considerations arise. I spoke about this topic at…
View Post
SQL injection
  • Security
  • 7 minute read
  • No comments

SQL injection, explained: what it is and how to prevent it

  • Carlos Schults
  • December 15, 2020
A SQL injection is a security attack that is as dangerous as it is ingenious. By abusing the data input mechanisms of an application, an attacker can manipulate the generated…
View Post
  • Security
  • Sqreen Product
  • 4 minute read
  • No comments

How to use frameworks to implement your Security Paved Road

  • Jb
  • December 10, 2020
I recently sat down with Sr. Research Lead at Synopsys and framework specialist, Ksenia Peguero, on Episode 2 of the AppSec Builders Podcast. In the episode, “Framework Security with Ksenia…
View Post

Posts navigation

Previous 1 2 3 4 … 20 Next
Search
Recent Posts
  • Democratizing security: The next step in Sqreen’s journey
  • Heroku Security: Securing your Heroku application
  • Streaming data with Amazon Kinesis
  • What is a Content Security Policy (CSP) and why is it important?
  • CIS 20 overview and what not to miss
Categories
  • Dev (56)
  • DevOps (14)
  • Go (5)
  • Java (4)
  • JavaScript (7)
  • Node.js (15)
  • PHP (3)
  • Python (18)
  • Ruby (16)
  • Security (136)
  • Sqreen Product (35)
By the Sqreen Team ❤
© Sqreen 2015-2021 – Privacy Policy