Security Resources

Building a Secure Mobile App in the Cloud

This guide on secure mobile applications shows top security vulnerabilities, OWASP's best practices for building/testing iOS and Android applications, and more.

December 19, 2022

by Boris Zaikin

CORE

· 7,000 Views · 3 Likes

Improve Microservices Security by Applying Zero-Trust Principles

Discover how the zero-trust principles can be applied in a microservices environment and what security controls should be implemented on the back end.

December 18, 2022

by Apostolos Giannakidis

CORE

· 8,756 Views · 8 Likes

Get Started On Celo With Infura RPC Endpoints

Learn about the Celo layer-one blockchain network and how to start building on it using Infura RPC endpoints.

December 17, 2022

by Paul McAviney

CORE

· 5,775 Views · 2 Likes

Software Supply Chain Security Checklist

Software security is a critical part of any product. Follow this checklist to discover five keys to keeping software secure from creation to delivery.

December 17, 2022

by Justin Albano

CORE

· 4,170 Views · 1 Like

ELI5: How Does a TPM Work?

A TPM is a special chip that keeps all your secrets safe on your phone or computer. But what is going on in there?

December 16, 2022

by Nick Hodges

CORE

· 2,909 Views · 1 Like

WordPress Core — Unauthenticated Blind SSRF

In this blog post, Sonar's R and D team describes a surprisingly simple vulnerability in WordPress’s implementation of pingbacks.

Updated December 16, 2022

by Thomas Chauchefoin

· 7,441 Views · 2 Likes

DevSecOps Easter Eggs

Being aware of the blind spots in an organization (and people) can go a long way toward defending against the unknowns. But where to start? Find out here.

December 16, 2022

by Julie Tsai

· 3,556 Views · 4 Likes

How to Block API Runtime Threats

We all want a safe environment wherever we go, but we have to hope for the best and prepare for the worst (and prepare to be surprised!). It's the same with apps.

December 16, 2022

by Ross Moore

· 3,673 Views · 2 Likes

Securing Your Containers—Top 3 Challenges

There are several pitfalls while securing containers and containerized ecosystems. Let's discuss the top three challenges in detail so you can manage them.

December 16, 2022

by Komal J Prabhakar

· 5,196 Views · 1 Like

How To Build a DAO With Truffle

Follow a tutorial to learn how to build a fully functional, on-chain governance decentralized autonomous organization (DAO) with Ganache and the Truffle Suite.

December 16, 2022

by Alvin Lee

CORE

· 2,841 Views · 2 Likes

DZone Community Awards 2022

There were a lot of great writers and articles published on DZone this year and we wanted to recognize some of the best!

December 16, 2022

by Jason Cockerham

· 11,608 Views · 8 Likes

Cybersecurity Compliance: The Regulations You Need to Follow

Abiding by compliance is the most straightforward way to boost cybersecurity. Regulations include the NIST, CMMC, SOC-2, and more — here's what they all are.

December 16, 2022

by Zac Amos

· 3,829 Views · 1 Like

Key Characteristics of Web 3.0 Every User Must Know

This article explains some major properties of Web 3.0 in order to determine the associated complexities and intricacies linked with this emerging web version.

December 15, 2022

by Rishabh Sinha

· 3,756 Views · 1 Like

Why DevSecOps Automation Is Important for Your Business

Let’s dig deep into the concept of DevSecOps automation and understand how you secure your application workflows.

December 15, 2022

by Gilbert Martin

· 3,365 Views · 1 Like

7 DevOps Security Best Practices for 2022

Let’s delve deep into what DevOps Security is all about, the processes, best practices, and benefits.

December 15, 2022

by Gilbert Martin

· 4,115 Views · 1 Like

Observability vs Monitoring Use Cases

Brief introduction of observability and monitoring. Examples of observability use cases and monitoring use cases. Role of observability and monitoring in DevOps.

December 15, 2022

by Hiren Dhaduk

· 3,675 Views · 2 Likes

Three Must-Have Data Center Security Practices

There is no universal cybersecurity solution. Nevertheless, there are a number of broad rules and best practices that can guide data center security initiatives.

December 15, 2022

by Abdul Majid Qureshi

· 2,792 Views · 1 Like

Penetration Testing: Process, Tools, Importance and Techniques

This article delves deep into penetration testing, its types, importance, advantages, techniques, and some of the standard tools included in a genuine penetration test.

December 15, 2022

by Praise Iwuh

· 3,049 Views · 1 Like

Security Implications of URL Parsing Differentials

In this article, Sonar's R and D team shares details on how differential URL parsing bugs can occur and what URL parser libraries are affected.

Updated December 14, 2022

by Thomas Chauchefoin

· 7,881 Views · 3 Likes

Securing The New Frontier in Developer Environments: Cloud IDEs

Cloud-based IDEs are the next logical evolution of the local dev environment. This brings lots of advantages but also some new risks to be aware of as a dev.

December 13, 2022

by Dwayne McDaniel

· 2,467 Views · 1 Like

The Latest Security Topics