Posts Tagged

open-source

Vulnerability Management with DefectDojo — is it great for DevSecOps?

Krzysztof Pranczk Vulnerability Management May 5, 2024

Presenting capabilities of DefectDojo in context of Vulnerability Management for DevSecOps and traditional application security engineers.

Security Code Challenge for Developers & Ethical Hackers – The Damn Vulnerable RESTaurant

Krzysztof Pranczk Application Security April 1, 2024

Introduction to a security code challenge dedicated to developers and ethical hackers. This challenge focuses on identifying and fixing web API security vulnerabilities in a Python FastAPI-based restaurant API.

Using osv-scanner – Software Composition Analysis from Google

Krzysztof Pranczk Application Security March 28, 2024

At the beginning of 2023 Google released an open-source Software Composition Analysis tool — osv-scanner. In this article I'm presenting how it can be configured and utilised using popular open-source projects as examples.

Posts Tagged

Vulnerability Management with DefectDojo — is it great for DevSecOps?

Security Code Challenge for Developers & Ethical Hackers – The Damn Vulnerable RESTaurant

Using osv-scanner – Software Composition Analysis from Google

Krzysztof Pranczk

Recent Posts

DevSec Selection #20 – Top Routinely Exploited Vulnerabilities in 2023 and Promising Open-source Tools

DevSec Selection #19 – Swiss Army Knife for DevSecOps, DEF CON 32 Talks, Okta Authentication Vulnerability

DevSec Selection #18 – Bug Bounty Hunting Resources, Vulnerability Prioritization, Time-to-Exploit Trends

Categories