Blog

AppSec & DevSecOps insights · 175 posts

November 17, 2025· 186

Nuclei: open-source DAST using YAML templates

🛠 Nuclei: open-source DAST using YAML templates Salute, Let's take a look today at dynamic testing DAST, which uses th…

#toolchain#dast
Read →
November 14, 2025· 183

Course for MIPT on secure development

🛠 Course for MIPT on secure development At the end of this day, I want to tell you about the information that appeared…

#devsecops#pmi#course
Read →
November 14, 2025· 202

Open Source Strong & Weak Copyleft Licenses

🤔 Open Source Strong & Weak Copyleft Licenses Salute, You and I previously looked at what free and proprietary softwa…

#toolchain#licenses
Read →
November 13, 2025· 194

Hello everyone,

Hello everyone, Today it will be cool to look at such a case at the teleconference, its comparison with zoom and the to…

#кулуарка#lol
Read →
November 11, 2025· 180

DevSecOps practices for C

🛠 DevSecOps practices for C Salute, Let's look at OOP today, from the perspective of non-standard recommendations for …

#appsec#devsecops#reco
Read →
November 7, 2025· 205

DevSecOps practices for Android

🛠 DevSecOps practices for Android Salute, Firstly, you and I have a great growth statistic, namely, we already have 20…

#appsec#devsecops#reco
Read →
November 6, 2025· 178

Access Control Terminology

🤔 Access Control Terminology Salut, let's finish the day by looking at access rights and separately highlight take-gra…

#term#pmcases
Read →
November 5, 2025· 198

Security Champion Terminology

🤔Security Champion Terminology Salute, There are a lot of questions about the market, who are these people and what do…

#term#pmcases
Read →
November 1, 2025· 236

Terminology Malicious

🤔 Terminology Malicious Fireworks, the difficult 6th day of the week, so we will look at what malware is and what type…

#term#pmcases
Read →
October 30, 2025· 216

CyberDefend Terminology

🤔 CyberDefend Terminology Salute, let's start looking at the base and how business operates within the framework of in…

#term#pmcases#riskanalys
Read →
October 30, 2025· 190

Grype as SCA for artifacts

🛠 Grype as SCA for artifacts Salute, today I propose to look at another open source tool for scanning vulnerabilities …

#toolchain#containersecurity#sca
Read →
October 29, 2025· 174

MITM Terminology

🤔 MITM Terminology Salute, I thought it would be cool to see posts with terminology that will allow you to broaden yo…

#term#pmcases
Read →
October 28, 2025· 202

Non-trivial security base for Docker

🤔 Non-trivial security base for Docker Wow, you've got it, let's do it, I often come across questions about the securi…

#reco#containersecurity#secrets
Read →
October 28, 2025· 205

Typical "sins" of using JWT

Typical "sins" of using JWT Salute, I recently crossed paths with colleagues with whom I recorded a podcast on secure…

#reco#reserch#secrets
Read →
October 27, 2025· 211

Bandit as linter on pre-commit

🛠 Bandit as linter on pre-commit Salute, Let's take a look at SAST for python today. We look at Bandit as a linter, be…

#toolchain#sast
Read →