DEV Community

# appsec

Application security topics beyond the web, including mobile and desktop applications.

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
39 CVEs in WebGoat. Only 36 Were Reachable.
kenzman profile

39 CVEs in WebGoat. Only 36 Were Reachable.

#security #appsec #java #devops
1
Comments
10 min read
Week 8 Challenge: Build an Anti-XSS Escape Encoding Framework in Python
fosres profile
fosres

Week 8 Challenge: Build an Anti-XSS Escape Encoding Framework in Python

#challenge #security #python #appsec
1
Comments
9 min read
Reducing False Positives in XSS Detection: Designing Confirmation-Based Scanners
peternasarah profile

Reducing False Positives in XSS Detection: Designing Confirmation-Based Scanners

#appsec #ai #security #webdev
Comments
3 min read
Week 6 Quiz Audit XSS Vulnerabilities
fosres profile

Week 6 Quiz Audit XSS Vulnerabilities

#security #python #webdev #appsec
1
Comments
17 min read
SAST vs DAST vs (IAST/RASP): Quick AppSec Checklist
securitystefan profile

SAST vs DAST vs (IAST/RASP): Quick AppSec Checklist

#sast #appsec #security #codereview
6
Comments 3
1 min read
Two "Medium" Findings That Chain Into Full Infrastructure Compromise
praetorian_guard profile

Two "Medium" Findings That Chain Into Full Infrastructure Compromise

#webdev #security #oauth #appsec
Comments
4 min read
Architectural Asymmetry in Authentication: Part 2 — Risk Before Context
antonmb profile

Architectural Asymmetry in Authentication: Part 2 — Risk Before Context

#security #infosec #authentication #appsec
3
Comments
2 min read
What We Learned Securing a SaaS Product with Automated DAST
james_miller profile

What We Learned Securing a SaaS Product with Automated DAST

#appsec #saas #security #testing
3
Comments
5 min read
Week 6 Scripting Challenge: Build a TLS Certificate Security Validator
fosres profile

Week 6 Scripting Challenge: Build a TLS Certificate Security Validator

#appsec #security #python #tls
Comments
46 min read
How to Attack a RAG System — and Why Your Security Scanner Won't Catch It
onoz1169 profile

How to Attack a RAG System — and Why Your Security Scanner Won't Catch It

#security #llm #rag #appsec
Comments 1
6 min read
Week 7 Scripting Challenge: JWT Token Validation
fosres profile

Week 7 Scripting Challenge: JWT Token Validation

#challenge #appsec #security #python
3
Comments
21 min read
Why Modern AppSec Needs Location-Aware Security Testing
jigar_online profile

Why Modern AppSec Needs Location-Aware Security Testing

#appsec #security #testing #data
Comments
4 min read
🧭 Dominando el OWASP Top 10 (Edición 2025): El Plano de Seguridad para la Próxima Generación
xnoruz profile

🧭 Dominando el OWASP Top 10 (Edición 2025): El Plano de Seguridad para la Próxima Generación

#cybersecurity #security #webdev #appsec
Comments
4 min read
Fundamentos de AppSec: Protegiendo el Corazón de tus Aplicaciones
xnoruz profile

Fundamentos de AppSec: Protegiendo el Corazón de tus Aplicaciones

#security #appsec #web #development
Comments
4 min read
🔐 AppSec desde los Protocolos: Cómo HTTP, Cookies y CORS Definen tu Superficie de Ataque
xnoruz profile

🔐 AppSec desde los Protocolos: Cómo HTTP, Cookies y CORS Definen tu Superficie de Ataque

#webdev #appsec #security #web
Comments
3 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.