Application Security This Week for April 14

The Stack Overflow Survey is out and has some interesting insights

https://insights.stackoverflow.com/survey/2019

 

Rebex has built a tool to scan SSH servers, similar to the Qualis SSL scan

https://sshcheck.com/

 

A new OWASP project that I'm participating in is aiming at inventorying and improving the overall security postures of package managers - take a look

https://github.com/OWASP/packman

 

And that's the news!

Application Security This Week for April 7

PortSwigger has replaced the exercises in the Web Application Security Hacker's Handbook with the new Web Academy.

https://portswigger.net/web-security

 

An ARM assembler - in JavaScript.  I don't even have the words, this is so awesome.

https://azm.azerialabs.com/

 

Writing a talk?  Here are 60 information security statistics with corresponding references.

https://itblogr.com/60-must-know-cybersecurity-statistics-for-2019/

 

Google has started their own vulnerability database.  I'm not sure why, we already have several, but it is worth a look.

https://www.vulncode-db.com/

 

And that's the news!

Bill Sempf

Husband. Father. Pentester. Secure software composer. Brewer. Lockpicker. Ninja. Insurrectionist. Lumberjack. All words that have been used to describe me recently. I help people write more secure software.

 

 

profile for Bill Sempf on Stack Exchange, a network of free, community-driven Q&A sites

MonthList