by Bill Sempf
11. October 2020 15:48
Totally forgot to do this last week, sorry.
Telerik released Fiddler Everywhere
https://www.telerik.com/fiddler
Github has added code scanning
https://github.blog/2020-09-30-code-scanning-is-now-available/
Another example of what I am admittedly harping on too much - the power of HTTP Smuggling
https://medium.com/@ricardoiramar/the-powerful-http-request-smuggling-af208fafa142
Here's a cool intro to manual static vulnerable analysis by Will Butler
https://btlr.dev/blog/how-to-find-vulnerabilities-in-code-bad-words
Some basics of securing APIs
https://dev.to/bearer/api-security-best-practices-3gjl
Have a good week, everyone!
b9a2b32f-bd36-4881-8df8-82ad88807c6d|0|.0|96d5b379-7e1d-4dac-a6ba-1e50db561b04
Tags: