Security Resources

What Does Spring DelegatingFilterProxy Do?

You might see Spring's DelegatingFilterProxy crop up sometimes. It's actually a proxy for a standard Servlet Filter. Let's see an example in action with Spring Security.

May 30, 2017

by Martin Farrell

· 34,401 Views · 9 Likes

Spring Security: Basic Authentication Example

Learn the basics of Basic Authentication, and how to use Basic Authentication to add security to your Spring Boot application.

May 21, 2017

by Gaurav Rai Mazra

· 40,404 Views · 4 Likes

SAP SQL Injections

SQL injections are some of the most common types of attacks. Read on to learn what vulnerable code looks like, and how to defend against these attacks.

May 19, 2017

by Alexander Polyakov

· 10,021 Views · 2 Likes

Strict Transport Security in ASP.NET MVC: Implementing RequireHstsAttribute

Learn how to better protect your web applications using a simple, and easy-to-use ASP.NET Core attribute, RequireHsts, which requires your browser to use HTTPS.

May 18, 2017

by Tomasz Pęczek

· 14,412 Views · 1 Like

Multi-Project Builds With Gradle and Fat JARs With Shadow

With Gradle and the Shadow JAR plugin, devs can break their work into dependencies, then build a fat JAR to handle transitive dependencies.

May 17, 2017

by Bill O'Neil

· 32,806 Views · 5 Likes

What Is Email Header Injection?

We've all heard of emails being vectors for attacks, but what exactly is email header injection, how can it be mitigated? We take a look at these questions in this post.

May 12, 2017

by Ian Muscat

· 18,585 Views · 9 Likes

Adding a Custom Dependency Injection Container in ASP.NET Core

If you're an ASP.NET Core dev, but are tired of having to use ASP.NET Core's dependency injection container, read on to learn how to replace the existing DI container.

May 10, 2017

by Juergen Gutsch

· 16,297 Views · 2 Likes

Secure Sensitive Data With Mule Credentials Vault

In this post, we'll go over securing sensitive data using the Mule Credentials Vault, from setup to actually using it to protect your data.

Updated May 10, 2017

by Jitendra Bafna

CORE

· 18,795 Views · 8 Likes

How to Handle the CSRF Token in JMeter

When we do load testing using JMeter without handling the CSRF token, you get a certain error. Learn how to handle the CSRF token in JMeter.

May 9, 2017

by manoj mathpal

· 34,946 Views · 15 Likes

OAuth 2.0 Beginner's Guide

In this post, we go over the basics of using OAuth 2.0, and show you step-by-step how to go about getting an OAuth access token.

Updated May 9, 2017

by Suraj Kumar

· 67,477 Views · 83 Likes

Intercepting Messages on TCP/IP in Mule

This tutorial will walk you through the steps of setting Mule to transform and intercept messages in real time with Anypoint Studio.

May 6, 2017

by Sumit Bansal

· 6,843 Views · 1 Like

TLS/SSL Explained: Examples of a TLS Vulnerability and Attack, Final Part

In the final part of our series, we look at some of the worst attacks than can be carried out against an insecure SSL/TLS network, and how to stop them.

May 5, 2017

by Agathoklis Prodromou

· 16,610 Views · 15 Likes

How to Load Test TCP Protocol Services With JMeter

Learn how to test a simple TCP server that works in the echo mode (in other words, the server responds with the same data that has been sent to it).

May 1, 2017

by Konsantine Firsanov

· 39,754 Views · 6 Likes

What Are Injection Attacks?

In the world of security, it's important to know what you're up against. In this post, we've provided a list of the most common and dangerous web attacks.

April 26, 2017

by Ian Muscat

· 34,343 Views · 4 Likes