Our website uses cookies to enhance your browsing experience.
Accept
to the top
Home
>
Posts
>
Posts: #Security

Posts: # Security

All tags:

#Knowledge #StaticAnalysis #Security #Java
Dec 16 2024
Looking for potential vulnerabilities in code, part 1: theory
Konstantin Volohovsky
We all know the risks that vulnerabilities pose: application crashes, data loss, or privacy breaches. In this article, we'll look at examples that illustrate the core aspects of an approach...
...
#Security
Jan 23 2024
Introducing SAST into the development process
Viktoria Pelipenko
Cyberattacks on applications are on the rise, and zero-day vulnerability exploitation is leading the way. Introducing SAST into the development process makes the product safer for users. However...
...
Subscribe to the newsletter
Want to receive a monthly digest of the most interesting articles and news? Subscribe!
* By clicking this button you agree to our Privacy Policy statement
#CSharp #Security
May 31 2023
XSS vulnerability in the ASP.NET application: examining CVE-2023-24322 in mojoPortal CMS
Sergey Vasiliev
In this article, we will thoroughly examine the XSS vulnerability in a CMS written in C#. Let's recall the theory, figure out how the security defect looks from a user's perspective and in code...
...
#Security
Apr 25 2023
Do developers dream of secure apps?
Sergey Vasiliev
Do developers care about code security? This question, I believe, is still open to debate. I wrote this article to solicit feedback from both developers and security experts. Would you help me...
...
#Cpp #Security
Apr 11 2023
GPT-3 detected 213 Security Vulnerabilities... Or it did not
Andrey Karpov
This text is a detailed commentary on the article "I Used GPT-3 to Find 213 Security Vulnerabilities in a Single...
...
#CSharp #Security
Mar 21 2023
Converting string to enum at the cost of 50 GB: let's analyze the CVE-2020-36620 vulnerability
Sergey Vasiliev
In this article, we're going to discuss the CVE-2020-36620 vulnerability and see how a NuGet package for converting string to enum can make a C# application vulnerable to DoS...
...
#Cpp #CSharp #Knowledge #StaticAnalysis #Security
Jan 26 2023
Under the hood of SAST: how code analysis tools look for security flaws
Sergey Vasiliev
Here we'll discuss how SAST solutions find security flaws. I'll tell you about different and complementary approaches to detecting potential vulnerabilities, explain why each of them is...
...
#CSharp #Knowledge #Security
Nov 03 2022
Catastrophic backtracking: how can a regular expression cause a ReDoS vulnerability?
Andrey Moskalev
Regular expressions come in handy when you need to search for and replace text. However, in some cases, they may cause the system to slow down or even make vulnerable to ReDoS attacks.
...
#CSharp #Security
Sep 06 2022
The risks of using vulnerable dependencies in your project, and how SCA helps manage them
Nikita Lipilin
Most applications today use third-party libraries. If such a library contains a vulnerability, an app that uses this library may also be vulnerable. But how can you identify such...
...
#Knowledge #Security
Jul 25 2022
Application Security Testing. How not to get confused between SAST, DAST, and IAST
Alexey Sarkisov
What benefits does SAST have? What's the difference between SAST and DAST? What's IAST? What do all these words mean?! Let's talk about this and more in the overview of the main types of...
...
View more Pagination arrow previous
1 2 3
...
6
Showing: - of 52
close form

Fill out the form in 2 simple steps below:

Your contact information:

Step 1
Congratulations! This is your promo code!

Desired license type:

Step 2
Team license
Enterprise license
* Difference between Team and Enterprise
Didn't get our email?
** By clicking this button you agree to our Privacy Policy statement
close form
Request our prices
Why do we ask to use Business Email?
New License
License Renewal
--Select currency--
USD
EUR
Didn't get our email?
* By clicking this button you agree to our Privacy Policy statement

close form
Free PVS‑Studio license for Microsoft MVP specialists
Why do we ask to use Business Email?
Didn't get our email?
* By clicking this button you agree to our Privacy Policy statement

close form
To get the licence for your open-source project, please fill out this form
Didn't get our email?
* By clicking this button you agree to our Privacy Policy statement

close form
I am interested to try it on the platforms:
Why do we ask to use Business Email?
Didn't get our email?
* By clicking this button you agree to our Privacy Policy statement

close form
check circle
Message submitted.

Your message has been sent. We will email you at


If you do not see the email in your inbox, please check if it is filtered to one of the following folders:

  • Promotion
  • Updates
  • Spam