Разработка • dev.to • 17 мая 2024 г. 8:00
This post originally appeared on my blog Welcome to this four-part mini-series on open-source best practices. In this series, we will discuss the best practices for adopting open-source software (OSS) into your organisation, managing OSS dependencie...... читать далее
webdev opensource productivityРазработка • dev.to • 14 мая 2024 г. 17:41
Cloud workloads continue to grow as new digital innovations arise monthly in the worlds of IoT applications, cloud services, and big data analytics. However, the cloud's dynamic and often complex nature can make cloud application security challenging...... читать далее
cybersecurity devops webdevРазработка • dev.to • 13 мая 2024 г. 15:08
by Adam Shostack Wouldn't it be nice to be able to anticipate security problems and design to minimize them? Many software engineers see security as something to handle "later on," with code analysis, fuzzing, or penetration testing. But good desig...... читать далее
securityРазработка • dev.to • 8 мая 2024 г. 17:08
Broken Authentication is a popular part of OWASP TOP 10 list. Authentication is one of the most important aspects of a platform. It is the act of confirming that the user that wants to use the platform now through a particular account is actually t...... читать далее
apisecurity webdev owaspРазработка • dev.to • 8 мая 2024 г. 9:08
Here’s a breakdown of foundational skills, hacking basics, and advanced topics for individuals looking to work in cybersecurity: Foundational Skills: Understanding of computer networking principles and protocols. Knowledge of operating systems...... читать далее
hacktoberfestРазработка • dev.to • 7 мая 2024 г. 20:28
In 2024, the Landscape Of DevOps continues to evolve, driven by technological advancements, shifting market demands, and the ever-growing need for speed, agility, and reliability in software development and deployment. DevOps, a fusion of development...... читать далее
programming ai devops productivityРазработка • dev.to • 7 мая 2024 г. 14:10
by Ziv Daniel Hagbi Hello to all Citizen Developers out there! Are you using Low-Code/No-Code platforms to accelerate your digital adoption? That is a question I would ask if this was 2021. 2024 has proven that it is no longer a question of “If”, b...... читать далее
security lowcode nocodeРазработка • The Cloudflare Blog • 7 мая 2024 г. 13:00
Cloudflare for Unified Risk Posture, a new suite of cybersecurity risk management capabilities built on our global network, can help enterprises with automated and dynamic risk posture enforcement across their expanding attack surface... читать далее
Risk Management Cloudflare One SASE CrowdStrikeРазработка • dev.to • 6 мая 2024 г. 19:12
There's been a lot of talk about SBOMs in tech media. This article will help answer three crucial questions you may be asking: What is an SBOM? Why do I need an SBOM? How do I get an SBOM? What's an SBOM? SBOM stands for "Software Bill...... читать далее
sbom security supplychainРазработка • dev.to • 6 мая 2024 г. 17:47
Technology is growing every day and so is the use of mobile phones in our lives. For as little as ordering groceries for our homes to handling our finances through banking and other financial apps, mobile applications are an integral part of our dail...... читать далее
mobileapptesting testgridРазработка • dev.to • 6 мая 2024 г. 17:43
In today's interconnected world, web applications play a crucial role in our everyday lives. From online shopping to social media, these applications have become an integral part of our digital experience. However, with the increasing complexity and...... читать далее
webdev techtobe101 learning securityРазработка • dev.to • 5 мая 2024 г. 19:28
The first step in the ATT&CK Matrix for Enterprise is the reconnaissance phase. The Amass tool is a perfect fit for the sub-techniques in the Search Open Technical Databases category which is part of the reconnaissance phase from the matrix abov...... читать далее
100daystooffload tooling security osintРазработка • dev.to • 5 мая 2024 г. 10:57
Originally published on Medium. Docker is a containerization platform that simplifies the deployment and scaling of applications by packaging them into lightweight, portable units called containers. A Docker image is a standalone, executable pack...... читать далее
docker security container discussРазработка • dev.to • 1 мая 2024 г. 11:01
Web applications and APIs serve as vital backbones for countless businesses and services. But as these technological infrastructures grow, so do the threats against them. Penetration testing (pen testing) has emerged as one of the most required pract...... читать далее
security vapt penetrationtesting toolingРазработка • habr.com • 27 апреля 2024 г. 8:50
Меня зовут Илья Кашлаков, я руковожу департаментом разработки в ЮMoney. Сегодня расскажу о том, какие задачи финтех может доверить большим языковым моделям (LLM) и как мы в компании следим за безопасностью, чтобы не допускать утечку данных. Также всп...... читать далее
llm машинное обучение обучение модели безопасность данных owasp top-10 copilotРазработка • habr.com • 26 апреля 2024 г. 7:56
Меня зовут Александр Чикайло, я разрабатываю межсетевой экран уровня веб-приложений PT Application Firewall в Positive Technologies и специализируюсь на защите веба. Сегодня речь пойдет о беспарольной аутентификации и ее безопасном применении в прило...... читать далее
беспарольная аутентификация webauthn SRPP windows 11 google chrome mfa owasp windows hello yubikey pt application firewallРазработка • dev.to • 25 апреля 2024 г. 6:00
The "DevOps JS" specialization in frontend development focuses on integrating JavaScript development workflows with DevOps practices to streamline the development, deployment, and operation of web applications. Here's a detailed overview of this spec...... читать далее
frontend a11y webdevРазработка • dev.to • 23 апреля 2024 г. 23:45
Aviso: Este artigo tem objetivo educacional, servindo de base para compreender como funciona a exploração de serviço vulnerável, dentro de um escopo de um pentest, utilizando ambiente controlado, sem exploração de um ambiente real. Artigo postado or...... читать далее
cybersecurity pentest web learningРазработка • dev.to • 23 апреля 2024 г. 15:49
The cloud has revolutionized application development, and serverless computing is its latest evolution. It offers an entire paradigm shift, allowing developers to focus solely on code functionality without having to manage servers. However, this conv...... читать далее
Разработка • dev.to • 22 апреля 2024 г. 20:29
Did you know Halifax, the capital of Nova Scotia, is considered to be "the economic center of Atlantic Canada" and is home to many impressive firsts? Halifax established the first public school and the first law school in Canada. It was also the firs...... читать далее
security containers risk microservices
