Posts Tagged

static application security testing

Web API Security Champion: Broken Object Level Authorization (OWASP TOP 10)

Krzysztof Pranczk Application Security April 17, 2024

Explaining one of the most common web API vulnerability classes - Broken Object Level Authorization in a practical manner. Providing a case study example based on the Damn Vulnerable RESTaurant API, including methods for identifying and preventing these vulnerabilities.

Introduction to Security in SDLC with SAST for Developers and Security Engineers

Krzysztof Pranczk Application Security February 20, 2024

Presenting an introduction Static Application Security Testing with examples how SAST and secrets detection can be implemented in SDLC. This article covers what is SAST and its advantages. Furthermore, it describes how SAST can be included in various SDLC stages with real world examples.

Posts Tagged

Web API Security Champion: Broken Object Level Authorization (OWASP TOP 10)

Introduction to Security in SDLC with SAST for Developers and Security Engineers

Krzysztof Pranczk

Recent Posts

DevSec Selection #20 – Top Routinely Exploited Vulnerabilities in 2023 and Promising Open-source Tools

DevSec Selection #19 – Swiss Army Knife for DevSecOps, DEF CON 32 Talks, Okta Authentication Vulnerability

DevSec Selection #18 – Bug Bounty Hunting Resources, Vulnerability Prioritization, Time-to-Exploit Trends

Categories