As a secure coder, you need both the right mindset and the right skills!
The Open Web Application Security Project is the ultimate source of information when it comes to Web application security. There is more than just the Top Ten, though; its projects cover best practices, tools, and more. Read our articles below on selected topics from OWASP — and beyond.
You spin me right round: why unsigned integer overflow is still relevant
November 8, 2023, 12:45 pm
Developers
Testers
C
C++
Integer overflow has been around for as long as computers themselves - but even today it is a pressing security issue in C.
Read more
Hacking tractors
November 30, 2021, 7:46 pm
Developers
Web
Automotive
How did some well-known manufacturers of agricultural machinery get to the cyber security spotlight.
Read more
Apache SSRF: an all-you-can-eat reverse proxy
November 29, 2021, 6:55 pm
Developers
Devops
C
Web
How do Server Side Request Forgery (SSRF) vulnerabilities manifest in code? A recent SSRF in Apache can help us understand.
Read more
SSRF – an old friend in the limelight
October 25, 2021, 8:05 pm
Developers
Web
SSRF has been around for a while; this year it made it to both the OWASP Top 10 and CWE Top 25. What's behind the acronym?
Read more
OWASP Top 10 2021: is it the right direction?
October 5, 2021, 4:42 pm
Developers
Devops
Leaders
Testers
Web
The OWASP Top 10 is undergoing some significant changes with the 2021 release – and many of these are not obvious.
Read more
The full house of vulnerabilities behind the Microsoft Exchange hack
June 7, 2021, 10:20 am
Developers
C#
Windows
Everyone talked about the attacks on Microsoft Exchange servers, but what about the vulnerabilities that enabled them?
