Original Post: My experience interning at r2c Vivek, an undergraduate Computer Science student at Drexel University, has been navigating the dilemma of working at a startup versus a big-tech company. Recently, he interned at the… Read More »Inside Look: My Unforgettable Internship Journey at r2c
Original Post: Server-Side Prototype Pollution Scanner | Blog The post by Gareth Heyes, published on March 13, 2023, provides detailed instructions on using the Server-Side Prototype Pollution Scanner, an automated open-source tool integrated with Burp… Read More »Detecting Risks: A Dive into Server-Side Prototype Pollution Scanning
Original Post: Balancing Business Objectives and Security Requirements… The content discusses the importance of balancing business objectives and security requirements when adopting Artificial Intelligence (AI) and machine learning technologies. Glenn Schmitz, Chief Information Security Officer… Read More »Striking the Perfect Balance: Harmonizing Business Goals with Security Needs
Original Post: TryHackMe mKingdom Writeup. This is a beginner-friendly CTF… | by Ria Banerjee | Jul, 2024 The content showcased a step-by-step approach to solve a beginner-friendly Capture The Flag (CTF) challenge on TryHackMe. The… Read More »Beginner-Friendly CTF Walkthrough: TryHackMe mKingdom Writeup by Ria Banerjee
Original Post: Security scanning with Semgrep in CI The article discusses how Semgrep, a code security scanning tool, is continuously improving and integrating into CI/CD workflows to help developers maintain secure code. It elaborates on… Read More »Enhance Your CI Pipeline with Semgrep: A Guide to Security Scanning
Original Post: Burp Suite Enterprise Edition Power Tools: Unleashing the power to the command line, Python, and more | Blog The content discusses the release of Burp Suite Enterprise Edition Power Tools (BSEEPT), created by… Read More »Maximize Security Testing: Harnessing Burp Suite Enterprise Edition with Command Line, Python, and Advanced Tools
Original Post: End to End Testing with Static, Container, and Dynamic… In this blog, the Veracode CLI tool is examined, showcasing its compatibility with Windows, MacOS, and Linux. Installation is straightforward, and once authenticated with… Read More »Mastering Comprehensive Testing: A Dive into Static, Container, and Dynamic End-to-End Strategies
Original Post: You’re Using More Open-Source Than You Realise | by Edwin Kwan | Jul, 2024 The article discusses the widespread and often underestimated use of open-source components in modern software development, highlighting that open-source… Read More »Discover the Hidden Open-Source Components in Your Daily Tools | Insights by Edwin Kwan
Original Post: Building security champions The article highlights the significant shortage of skilled professionals within the cybersecurity industry, emphasizing the challenge of filling essential roles like application security engineers, DevSecOps professionals, and security architects. It… Read More »Empowering Employees to Safeguard Your Organization: The Role of Security Champions
Original Post: Imperva Client-Side Protection Mitigates the Polyfill Supply Chain Attack A recent website supply chain attack involving the domain cdn.polyfill.io has compromised over 100,000 websites, including those of well-known brands. The domain, acquired by… Read More »Guarding Web Assets: How Imperva’s Client-Side Protection Shields Against Polyfill Supply Chain Attacks