Security Resources

Seccomp, eBPF, and the Importance of Kernel System Call Filtering

Learn about attacks that affect user space security products and how popular technologies such as Seccomp and eBPF can be used in such a way that avoids these issues.

May 2, 2024

by Bill Mulligan

· 3,521 Views · 3 Likes

Integrating SSPM and DevOps for Maximum Project Security

Enhance project security with SSPM and DevOps integration. Discover the power of combining tools for maximum protection.

May 1, 2024

by Ryan Kh

· 917 Views · 1 Like

Exploring FAPI 2.0: The Latest in API Security Technology

This post explores FAPI standards, which enhance secure data exchange in high-risk sectors, evolving from OAuth 2.0-based FAPI 1.0 to the more secure FAPI 2.0.

May 1, 2024

by Hideki Ikeda

· 1,983 Views · 2 Likes

How To Detect Living-Off-The-Land (LOTL) Attacks

A living-off-the-land attack occurs when cybercriminals exploit legitimate tools and features to gain access. These tips will help detect LOTL attacks.

May 1, 2024

by Zac Amos

· 1,192 Views · 1 Like

Implementing RSA From Scratch in Python (Part 2)

In Part 2 of this Python series, explore a discussion about Random Prime Numbers and the Fibonacci Number Calculation when implementing RSA from scratch.

April 29, 2024

by Traven West

· 884 Views · 1 Like

When APIs Go Wrong: Neglecting Rate Limiting

Authentication is important, though not a complete defense. Rate-limiting policies add an extra line of protection to reduce the impact on compromised APIs.

April 29, 2024

by Hugo Guerrero

CORE

· 1,326 Views · 1 Like

Revisiting Observability: A Deep Dive Into the State of Monitoring, Costs, and Data Ownership in Today’s Market

Explore insights into the current challenges in monitoring, highlighting issues with instrumentation, pricing models, and data ownership.

April 26, 2024

by Mike Moore

· 2,144 Views · 3 Likes

The Case for Choosing Between TCP and UDP for Data Transmission

The article compares TCP and UDP for data transmission, weighing reliability and sequential delivery of packets or fast speed and packet delivery in a stream.

April 26, 2024

by John Ejiofor

· 2,115 Views · 1 Like

Abusing Kubernetes Resources to the Moon

This article provides a practical guide to enforcing resource constraints and monitoring resource abuse in cloud-native workloads.

April 25, 2024

by Nigel Douglas

· 1,661 Views · 2 Likes

Is Your Roadmap Prioritizing Memory-Safe Programming Languages?

Cybersecurity agencies around the world put out a plea for developers to use memory-safe programming languages. Is your roadmap ready?

April 24, 2024

by Greg Bulmash

· 1,205 Views · 1 Like

A Discussion on Managing Vulnerabilities

Breaches are common due to unpatched vulnerabilities. Learn why a strong vulnerability management program is crucial for any security strategy.

April 23, 2024

by Tchule Ribeiro

· 555 Views · 1 Like

Leveraging AI to Bolster Cloud Security for APIs and Microservices

AI-powered cloud security solutions are essential for protecting APIs and microservices from online threats. Learn more about how AI improves cloud security.

April 23, 2024

by Nilesh Charankar

· 1,251 Views · 1 Like

How Can NIST 800-171 Policy Templates Improve CyberSecurity

Policy templates can streamline this process as you can improve security and achieve compliance more easily. Find out more in this guide!

April 23, 2024

by Stylianos Kampakis

· 1,066 Views · 1 Like

High-Volume Security Analytics: Splunk vs. Flink for Rule-Based Incident Detection

Explore the strengths and weaknesses of Splunk and Flink to make informed decisions about how to best respond to security threats.

April 23, 2024

by Mayank Singhi

· 3,004 Views · 3 Likes

How To Conduct Security Audits on Legacy Software

Most companies relying on legacy software cannot immediately stop using it. To determine how to best mitigate risk, follow these security audit steps.

April 22, 2024

by Zac Amos

· 663 Views · 1 Like

Guide to Cloud-Native Application Security

Securing cloud-based applications through application security involves utilizing platforms such as Docker and Kubernetes to safeguard against threats.

April 19, 2024

by Naga Santhosh Reddy Vootukuri

CORE

· 1,818 Views · 3 Likes

Beyond the Resume: Practical Interview Techniques for Hiring Great DevSecOps Engineers

This article offers advice for hiring managers, particularly in DevSecOps, on how to spot qualified candidates and avoid those who exaggerate their skills.

April 18, 2024

by Roman Burdiuzha

· 8,280 Views · 3 Likes

Vulnerable Code [Comic]

This comic depicts a conversation regarding vulnerable code. Can the characters agree as to whether this is a good or bad thing?

April 17, 2024

by Daniel Stori

CORE

· 2,352 Views · 4 Likes

Wireshark and tcpdump: A Debugging Power Couple

Explore the power of Wireshark and tcpdump for network analysis in our comprehensive guide, unveiling tips for effective troubleshooting.

April 17, 2024

by Shai Almog

CORE

· 3,165 Views · 4 Likes

3 Ways Blockchain Reinforces Data Integrity in the Cloud

Companies must maintain data reliability to ensure informational accuracy and security, especially in cloud-first approaches. How can blockchain keep things secure?

April 17, 2024

by Emily Newton

· 2,651 Views · 1 Like

The Latest Security Topics