Ressourcen

What is CI/CD? CI/CD pipeline and tools explained

Learn more about CI/CD continuous integration and continuous delivery, CI/CD pipeline, and framework. CI/CD as the foundation for DevSecOps.

Software Development Life Cycle (SDLC): Phases and Methodologies

Learn more about SDLC (Software Development Life Cycle) phases and methodologies that define the entire software development procedure step-by-step.

Worum handelt es sich bei der MIT-Lizenz?

Erfahren Sie mehr über die MIT-Lizenz - eine der unkompliziertesten Open-Source-Lizenzvereinbarungen - und integrieren Sie die Lizenzeinhaltung in Ihre vorhandenen Abläufe.

OpenCart Vulnerability Research (v4.0.2.3/3.0.3.9)

Discover the security vulnerabilities in OpenCart's admin and customer functionalities, including XSS, Zip Slip, and SQL Injection exploits. Learn how these flaws impact e-commerce systems and how attackers can exploit them for remote code execution.

Discover the path to trusted software

Kurzüberblick zur statischen Codeanalyse

Hier erfahren Sie, wie Sie mittels statischer Codeanalyse die Hälfte aller Sicherheitsprobleme vermeiden, die ansonsten in die Produktion gelangen würden.

Simple Doesn't Always Mean Secure: Avoid this Golang XSS Pattern

Cross-site scripting (XSS) attacks are a web vulnerability that allows attackers to inject malicious scripts into web pages. Learn how to prevent and fix XSS scripting in Golang.

5 Common AppSec Challenges in FinServ

Learn how to overcome key AppSec challenges in FinServ, from regulatory compliance to cyber threats, while aligning security and development teams.

What You Need to Know About PCI DSS 4.0

Developer Training in Cybersecurity: Enhance development & security teams collaboration

SAST vs. DAST: what is the difference and how to combine the two?

Dynamic security testing (DAST) uses the opposite approach of SAST. Whereas SAST tools rely on white-box testing, DAST uses a black-box approach.

SAST essentials for AI-generated code: A security leader’s handbook