Threat Modeling Gameplay with EoP
Coming soon to a bookshelf near you, Threat Modeling Gameplay with EoP: A reference manual for spotting threats in software architecture
Tagged in: Application Security (4)
Application Security is More than Just Pen Testing
So often organizations believe that Application Security stops at penetration testing and fixing vulnerabilities but it is more than that, penetration testing is the reactive side of things but you also need the proactive aspects of Application Security to reduce the flow.
OWASP - Application Security Awareness Campaigns
I’ve just launched the first OWASP Application Security Awareness Campaign with 11 Posters of the OWASP Top Ten 2021 project.
Three Brass Monkeys
In this article I’m going to talk about why we shouldn’t take security for granted, what practices should be part of our process and how the industry may move to enforce this.
Browse all Topics
- ANTLR
- Application Security
- AppSec
- Authentication
- Authorization
- Awareness
- CAPEC
- Centrality
- Certificates
- Compiler Compilers
- Compliance
- Dependency Analysis
- Digital Signatures
- Elevation of Privilege
- English
- Framework Fixators
- Games
- Grammar
- Graph Analysis
- GSSCredential
- Hashing
- HttpClient
- HttpComponents
- Inner-Source
- IT Extremists
- Java
- JavaCC
- JavaScript
- JBoss
- JNDI Realm
- Kerberos
- Key Distribution Center
- languages
- LDAP
- learning
- Legislation
- Manners
- Mitre
- Motivation
- Origins
- Osteria
- OWASP
- PageRank
- Parser Generators
- PicketLink
- Posters
- Programming Languages
- Public Key Cryptography
- Python
- Risk
- Running
- SAML
- SCA
- Scrum Nazis
- Scrum Talibans
- Security
- Social Engineering
- SSL
- SSO
- Strategy
- STRIDE
- Threat Modeling
- TLS
- Tomcat
- Top 10
- TRIM
- Vulnerability Management
- Wildfly