Category Archive

Application Security

A Practical Approach to SBOM in CI/CD Part II — Deploying Dependency-Track

Krzysztof Pranczk Application Security March 7, 2024

The guide presents how to deploy Dependency-Track with Docker Compose and Helm Charts in Kubernetes. It provides a review of Dependency-Track.

A Practical Approach to SBOM in CI/CD Part I — CycloneDX

Krzysztof Pranczk Application Security March 7, 2024

In this article, I’m presenting practical use cases for implementing SBOM generation and its benefits. The article covers the concept of SBOM, its advantages, popular formats and practical implementations for both Java and Python projects.

Introduction to Security in SDLC with SAST for Developers and Security Engineers

Krzysztof Pranczk Application Security February 20, 2024

Presenting an introduction Static Application Security Testing with examples how SAST and secrets detection can be implemented in SDLC. This article covers what is SAST and its advantages. Furthermore, it describes how SAST can be included in various SDLC stages with real world examples.

Category Archive

A Practical Approach to SBOM in CI/CD Part II — Deploying Dependency-Track

A Practical Approach to SBOM in CI/CD Part I — CycloneDX

Introduction to Security in SDLC with SAST for Developers and Security Engineers

Krzysztof Pranczk

Recent Posts

DevSec Selection #20 – Top Routinely Exploited Vulnerabilities in 2023 and Promising Open-source Tools

DevSec Selection #19 – Swiss Army Knife for DevSecOps, DEF CON 32 Talks, Okta Authentication Vulnerability

DevSec Selection #18 – Bug Bounty Hunting Resources, Vulnerability Prioritization, Time-to-Exploit Trends

Categories