We Hack Purple Blog

Pushing Left, Like a Boss — Part 5.8 — Securing Your Cookies

The previous article in this series is 5.7 URL Parameters. Continuing on...

Pushing Left, Like a Boss — Part 5.7 — URL Parameters

Never put information in the parameters in the URL of your application...

Pushing Left, Like a Boss — Part 5.6 — Redirects and Forwards

Recently removed from the OWASP Top Ten, unvalidated redirects and forwards are...

Pushing Left, Like a Boss – Part 5.5 File Uploads

Allowing files to be uploaded to your applications (and therefore your network)...

Pushing Left, Like a Boss — Part 5.4 Session Management

It is my firm opinion that only the session management features in...

Pushing Left, Like a Boss — Part 5.3 — Browser and Client-Side Hardening

Browser and client-side hardening focuses on enabling and using the security features...

Pushing Left, Like a Boss — Part 5.2- Use Safe Dependencies

According to many sources between 70–90% of application code is contained within...

Pushing Left, Like a Boss — Part 5.1 — Input Validation, Output Encoding and Parameterized Queries

The next several posts will break up the secure coding guideline from...

Pushing Left, Like a Boss: Part 4 — Secure Coding

In the previous article in this series we discussed secure design concepts...

Pushing Left, Like a Boss! — Part 3: Secure Design

In the previous article in this series we discussed security requirements. When...

Pushing Left, Like a Boss! — Part 2: Security Requirements

In the previous article in this series we discussed why ensuring the...

Pushing Left, Like a Boss: Part 1

In all of the talks and articles I have ever written and...