Security Resources

How to Master a DevSecOps Pipeline that Devs and AppSec Love

Struggling with CI slowdowns and noisy alerts? See how to streamline your DevSecOps pipeline for faster delivery and more accurate security outcomes

June 18, 2025

by Eran Kinsbruner

· 2,253 Views · 3 Likes

Secure DevOps in Serverless Architecture

Mitigating risk in cloud Environments and enabling DevSecOps development lifecycle, enforcing least privilege access, and continuously monitoring workflows.

June 18, 2025

by Gaurav Shekhar

· 2,255 Views · 2 Likes

How to Achieve SOC 2 Compliance in AWS Cloud Environments

Achieving SOC 2 compliance in AWS requires planning, rigorous implementation, and ongoing commitment to security best practices.

June 17, 2025

by Chase Bolt

· 1,618 Views · 1 Like

Why 99% Accuracy Isn't Good Enough: The Reality of ML Malware Detection

ML models need to be complemented with traditional detection techniques for malware detection to work in real enterprise environments, due to the "base rate problem."

June 16, 2025

by Udbhav Prasad

· 2,318 Views · 5 Likes

Mastering Kubernetes Observability: Boost Performance, Security, and Stability With Tracestore, OPA, Flagger, and Custom Metrics

This guide walks you through using Tracestore, OPA, Flagger, and custom metrics to make Kubernetes more observable, with better tracing, policy control, and performance.

June 16, 2025

by Prabhu Chinnasamy

· 2,785 Views · 53 Likes

Understanding the Fundamentals of Cryptography

Cryptography protects data using encryption, ensuring only intended users can access it. This article explains its basics with simple examples.

June 13, 2025

by Siri Varma Vegiraju

CORE

· 2,024 Views

How Security Engineers Can Help Build a Strong Security Culture

Acting as security champions, collaborating with cross-functional teams, and integrating security into daily workflows, security engineers can drive a culture where security is a shared responsibility across all levels.

June 12, 2025

by Swati Babbar

· 2,026 Views · 2 Likes

Traditional hashes miss unknown malware. Similarity digests like TLSH, ssdeep, and sdhash improve detection by comparing file similarities. This article benchmarks them.

June 11, 2025

by Udbhav Prasad

· 2,297 Views

Secure Your Oracle Database Passwords in AWS RDS With a Password Verification Function

Enforce strong password policies for Oracle databases on AWS RDS using built-in or custom verification functions via the rdsadmin package.

June 10, 2025

by arvind toorpu

CORE

· 2,180 Views · 3 Likes

Online Developer Tools a Backdoor to Security Threat

Using online developer utilities like a JSON Viewer can be incredibly convenient for parsing and visualizing JSON data, but they also come with significant risks.

June 9, 2025

by Soham Sengupta

· 1,571 Views

Serverless IAM: Implementing IAM in Serverless Architectures with Lessons from the Security Trenches

Serverless IAM combines managed identity services with fine-grained authorization for secure FaaS across major cloud providers.

June 9, 2025

by Mahesh Vaijainthymala Krishnamoorthy

· 4,552 Views · 1 Like

Secure IaC With a Shift-Left Approach

Shift-Left secure Infrastructure as Code helps catch issues early, automate compliance, and build secure, scalable cloud infrastructure.

June 6, 2025

by Josephine Eskaline Joyce

CORE

· 2,929 Views · 4 Likes

The Synergy of Security and Development: Integrating Threat Models With DevOps

Embedding security in the SDLC builds resilient apps against threats. Key practices include early integration, teamwork, automation, updates, and metric tracking.

June 5, 2025

by Sonia Mishra

· 1,870 Views · 2 Likes

Enhancing SQL Server Security With AI-Driven Anomaly Detection

Learn how to detect, manage, and resolve orphaned users in SQL Server using advanced queries, best practices, and AI-driven security enhancements.

June 4, 2025

by Bhanuprakash Madupati

· 71,513 Views · 24 Likes

The Rise of Vibe Coding: Innovation at the Cost of Security

Discover the risks of vibe coding and learn strategies to balance creativity with security. Protect your app and users while maintaining a fast-paced workflow.

June 4, 2025

by Sonia Mishra

· 2,281 Views · 1 Like

Privacy-Preserving AI: How Multimodal Models Are Changing Data Security

Multimodal AI models are finally enabling powerful analytics while preserving privacy, proving you can have cutting-edge AI without sacrificing data security.

June 4, 2025

by Vinoth Manamala Sudhakar

· 2,168 Views · 1 Like

Securing Software Created by AI Agents: The Next Security Paradigm

Agentic AI can autonomously write and deploy code, creating new security risks that demand human oversight and robust safeguards.

June 3, 2025

by Pranjal Sharma

· 5,811 Views · 11 Likes

Securing DevOps Pipelines: A Practical Guide to Balancing Speed and Security

Security is crucial in every aspect of technology, and DevOps pipelines are no exception. How do DevOps teams adopt a security culture based on industry standards?

June 2, 2025

by Sudha Rani Pujari

· 2,120 Views