We Hack Purple Blog

The Importance of Inventory

Tanya Janca, OWASP AppSecDay, Melbourne, Australia, October 2019 The real reason companies...

The training you have selected is too ‘off topic’

In this series we are discussing how to get your technical training...

How to get your boss to approve the training you want

*This is a series.* We’ve all been there. There’s a training you...

Security is Everybody’s Job — Part 6 — The Second Way

The Second Way of DevOps is fast feedback. In security, when we...

Security is Everybody’s Job — Part 5 — The First Way

The First Way of DevOps The first “Way” of DevOps is emphasizing...

Security is Everybody’s Job — Part 4 — What is DevSecOps?

In this post we will explore The 3 Ways of DevOps. But...

Security is Everybody’s Job — Part 3 — What IS DevOps?

What IS DevOps? There are many definitions of DevOps, too many, some...

Security is Everybody’s Job — Part 2 — What is Application Security?

Application Security is every action you take towards ensuring the software that...

Security is Everybody’s Job — Part 1 — DevSecOps

This is the first in a many-part blog series on the topic...

7 Places to do Automated Security Tests

When working in a DevOps environment security professionals are sometimes overwhelmed with...

Pushing Left, Like a Boss – Part 10: Special AppSec Activities and Situations

Special Situations Not all application security programs are the same, and not...

Pushing Left, Like a Boss – Part 9: An AppSec Program

In my talk that this blog series is based on, "Pushing Left,...