
May 02, 2018
Postman is a useful tool used by many developers to document, test and interact with Application Programming Interfaces (APIs). With the ubiquity of....
Blog

May 01, 2018
In my last blog post, I talked about what an application security (AppSec) program is and how an organization would go about building a formal program....
Blog

April 25, 2018
General thought: A breach of trust is different than a breach of security. Trust and security, while related, are very different from each other. In....
Blog

April 25, 2018
General thought: A breach of trust is different than a breach of security. Trust and security, while related, are very different from each other. In....
Blog

April 24, 2018
Serverless architecture enables applications to be developed and deployed without management of the underlying host or operating system. Instead of a....
Blog

April 19, 2018
Forty years ago Burger King launched a revolution in customization, declaring that they could provide you the power of creating your perfect burger....
Blog

April 17, 2018
Most web applications provide a 'forgot my password' feature where a recovery or reset token is delivered to the associated account email address....
Blog

April 12, 2018
There are a variety of scanning tools in the market today, from commercial to open source. Some are intended only for identifying a particular....
Blog

April 10, 2018
An application security (AppSec) program can be defined as the set of risk mitigating controls and business functions that support the discovery....
Blog

April 02, 2018
Attackers and security assessors alike are utilizing a technique called domain fronting, which masks malicious command and control (C2) traffic. This....
Blog

March 29, 2018
When you spend a lot of time doing security testing on mobile apps like I do, you begin to worry that a large part of your life will be spent....
Blog

March 21, 2018
Sensitive and relevant data, such as personally identifiable information (PII) or intellectual property, may be running rampant in your organization....
Blog