Security Resources

Accelerate Cloud-Native Applications With NVMe

Cloud-native applications have different storage needs from legacy applications or traditional software hosted in the cloud.

September 22, 2022

by Carol Platz

· 4,272 Views · 1 Like

How to Set Up Trivy Scanner in GitLab CI: The Complete Guide

Trivy is an open-source container image scanner used by DevOps and security teams known for its reliability and ease of use.

September 22, 2022

by Florian Pialoux

· 4,347 Views · 1 Like

How Does WebAuthn Work?

WebAuthn is the FIDO Protocol that defines a passwordless means of authentication. This article gives a rundown of the process and how the user sees it.

September 22, 2022

by Nick Hodges

CORE

· 7,269 Views · 5 Likes

Thinking Like a Hacker: Abusing Stolen Private Keys

How can an attacker exploit leaked credentials? In this new series, we try to answer this question by imagining plausible attack scenarios. First case: an RSA private key is found in a Docker image.

September 21, 2022

by C.J. May

· 6,308 Views · 2 Likes

How to Secure Your APIs

APIs are an integral part of digital business strategy today. As such, you must ensure your APIs are secure for your business and others who access them.

September 21, 2022

by Tom Smith

CORE

· 6,023 Views · 1 Like

Elasticsearch TLS Activation: X-Pack Security

In this article, learn more about what the Elasticsearch TLS structure is used to ensure, and also how to activate the x-pack-security module.

September 21, 2022

by Omer Yilmaz

CORE

· 5,423 Views · 1 Like

Develop a Simple App: React, GraphQL, Spring Data JPA, UCP, and Oracle

Develop a simple app in minutes with a React frontend that makes GraphQL calls against a Spring Boot Data JPA service backed by Oracle database and accessed via UCP.

September 20, 2022

by Paul Parkinson

· 7,519 Views · 2 Likes

Which GitLab Backup Best Practices to Follow?

Imagine that even the entire GitLab server or GitLab database can go down. Thus, you and your team should always be ready for any disaster scenario.

September 20, 2022

by Daria Kulikova

· 4,817 Views · 2 Likes

How Sigma Rules Can Help Address the Cybersecurity Skills Shortage

Sigma rules provide real benefits that lighten the workload of SOC engineers and help them bear the overwhelming amount of work.

September 19, 2022

by Ryan Kh

· 6,615 Views · 3 Likes

GitHub Actions Security Best Practices [Cheat Sheet Included]

GitHub Actions is an increasingly popular CI/CD platform. They offer powerful and easy-to-access features to build automation right into any GitHub repository. However, they also require special attention to avoid any compromise. Here are the best practices to secure them.

September 17, 2022

by Thomas Segura

· 6,477 Views · 1 Like

Top 3 OWASP Vulnerabilities and How to Deal With Them

Each cyber vulnerability has its own way of solution. Find out more about the top 3 OWASP vulnerabilities, issues, examples that might arise, and how to deal with them.

Updated September 16, 2022

by Tetiana Stoyko

· 5,927 Views · 1 Like

What Is Encryption? — 6 Top Types of Encryption Methods + Examples

In a world where cybercrime is rising, it is reassuring to know that there are many ways to maintain network security. Learn more about how encryption.

September 16, 2022

by Praise Iwuh

· 5,859 Views · 1 Like

Docker Security Best Practices for Your Node.js Application

This blog will cover the top 12 Docker security best practices you need to consider when using the Docker platform.

Updated September 16, 2022

by Alfonso Valdes

· 11,824 Views · 2 Likes

From Ethereum To Flow – An Introduction To The Flow Blockchain

Ethereum is not in a state to support a massively successful blockchain game, see how Flow blockchain and Cadence smart contract language provide an optimized solution.

September 16, 2022

by John Vester

CORE

· 74,479 Views · 5 Likes

OPAL + OPA VS XACML

Compare the traditional XACML architecture authorization flow with the one provided by OPA + OPAL and then discuss the differences.

September 15, 2022

by Daniel Bass

· 4,663 Views · 1 Like

Compliance Automated Standard Solution (COMPASS), Part 1: Personas and Roles

This is the first part of our series illustrating the challenges that organizations and cloud providers face when trying to achieve continuous compliance.

September 15, 2022

by Anca Sailer

· 7,359 Views · 2 Likes

The Maze of Python Dependency Management

In this post, I'd like to shed some light on dependency management in Python. Python dependency management is a whole different world.

September 13, 2022

by Nicolas Fränkel

CORE

· 5,511 Views · 2 Likes

Distributed Denial-of-Service (DDoS) Attacks: What You Need to Know

Distributed Denial of Service (DDoS) attacks are growing quickly, not simply in the number of attacks but also in intensity.

September 8, 2022

by Ross Moore

· 9,469 Views · 1 Like

Preventing SQL Injections in Java With JPA and Hibernate

Preventing SQL Injections in Java using SQL Parameters with the Java Persistence API (JPA) and Hibernate ORM.

September 6, 2022

by Elmar Dott

CORE

· 6,945 Views · 4 Likes

Cloud Migration Manual: The Adjustment to SaaS Model

Moving to SaaS software is a huge step to take, and it requires deep analysis and proper process setup. This post intends to guide you on how to move to SaaS.

Updated September 6, 2022

by Tetiana Stoyko

· 8,542 Views · 3 Likes

The Latest Security Topics