Reducing The Risk: A software Engineering Problem
The best way to solve the software security problem is when and where it starts, right at the software creation or as close to the
February 11, 2020
Get the latest on secure development, security attacks, news, and new product features.
The reshift IntelliJ plugin enables developers to find vulnerabilities in their own custom code and help them remediate with rich issue descriptions within the IDE.
A series on best practices, new tools, and talks from industry experts every Friday.
The best way to solve the software security problem is when and where it starts, right at the software creation or as close to the
Path Traversal attacks occur when the user can specify content to be written on the server. An attacker, relying on the application to pass unsanitized
Path Traversal attacks occur when the user can specify content to be written on the server. An attacker, relying on the application to pass unsanitized
Insecure Cryptography is a general vulnerability in which the encryption algorithm chosen for use cases such as authentication, integrity checks, signature verification is weak and
Information leakage is a weakness where an application reveals sensitive information such as technical details, environment details, or user-specific data. Sensitive data may be used
Hypertext Transfer Protocol (HTTP) header injection can only occur when user-supplied unsanitized data is copied into a response header. If an attacker can inject a
Occurs when untrusted data is sent to an interpreter as part of a command or query which can execute unintended commands or access unauthorized data.
A result of an inadequately developed login pages, authentication logic, backdoor, custom session management or authentication scheme.
Attackers steal keys, execute man-in-the-middle attacks, or steal clear text data off the server, while in transit, or from the user’s client
