Security Resources

Broken Access Control and How to Prevent It

This post explores broken access control vulnerabilities and what firms can do to prevent access control flaws. Read below to find out more.

September 30, 2021

by Sudip Sengupta

CORE

· 3,982 Views · 2 Likes

SAML vs OAuth vs OpenID Connect — Which One Suits You the Most?

Interested in deepening your knowledge of OAuth, OpenID Connect or SAML? Read on to get a new insights and learn about differences between the standards.

September 29, 2021

by Bartłomiej Żyliński

CORE

· 18,057 Views · 16 Likes

Spring Boot + Swagger 3 (OpenAPI 3) + Security Example(Basic Authentication)

As a continuation in this Spring Boot tutorial series, learn in this post about implementing Spring Boot Basic Security for the Spring Boot Swagger example.

September 29, 2021

by Rida Shaikh

· 65,043 Views · 7 Likes

5 Common Key Management Challenges

Encryption keys are vital to maintaining your company's security, reputation, and financial well-being. Don't let these five challenges lock you out.

Updated September 29, 2021

by Eric Tobias

· 9,300 Views · 3 Likes

AWS Web Application and DDoS Resiliency

Let me start by explaining the term "DDoS" and then we will get into how AWS helps in creating resiliency against these kinds of attacks.

September 25, 2021

by Rajat Toshniwal

· 16,199 Views · 2 Likes

Apache Kafka in Cybersecurity for SIEM/SOAR Modernization

In summary, SIEM and SOAR are key pieces of a modern cybersecurity infrastructure. The capabilities, use cases, and architectures are different for every company.

September 25, 2021

by Kai Wähner

CORE

· 5,013 Views · 7 Likes

Application Security Checklist

Evaluating security controls with OWASP’s top 10 security tests

September 24, 2021

by Sudip Sengupta

CORE

· 21,257 Views · 8 Likes

Securing Cloud-Native Applications

Addressing challenges, automating pipelines, and shifting security left

September 24, 2021

by Samir Behara

CORE

· 9,748 Views · 11 Likes

Mobile and IoT Security Strategies in the Cloud

Security measures and principles in Azure, Google Cloud, and AWS

September 24, 2021

by Boris Zaikin

CORE

· 3,566 Views · 4 Likes

Competition Is No Longer Between Companies — It’s Between Supply Chains!

The direct competition between brands is no longer relevant. The only competition that remains is between the companies’ supply chains.

September 23, 2021

by Gaurav Agarwaal

· 17,517 Views · 3 Likes

3 Quick Ways to Recover Outlook PST Password Online

In this tutorial, a Core author takes you through the process of how to recover the password from a PST file using a variety of approaches.

September 21, 2021

by Mithilesh Tata

CORE

· 21,471 Views · 2 Likes

Your Guide to Automated Vulnerability Scanners: Types, Benefits, and More

This article delves into why organizations should embrace automated vulnerability scanning, various scanning mechanisms, and more.

Updated September 21, 2021

by Sudip Sengupta

CORE

· 14,374 Views · 2 Likes

A Guide to Transparent Data Encryption in PostgreSQL

Transparent Data Encryption, or TDE, encrypts the data in a database to prevent attackers from reading it if they break the first line of defense.

September 16, 2021

by Felix Schildorfer

· 6,631 Views · 7 Likes

A Guide to DataOps: The New Age of Data Management

DataOps isn’t just another development methodology. It radically transforms how organizations use data by democratized access and massive potential.

September 16, 2021

by Mir Ali

CORE

· 14,159 Views · 4 Likes

How to Implement Two-Factor Authentication in A Spring Boot OAuth Server? Part 2: Under the Hood

This post continues Part 1 and demonstrates how the Spring Boot OAuth authentication server processes a token request internally.

September 14, 2021

by Alexander Eleseev

CORE

· 6,245 Views · 2 Likes

How to Implement Two-Factor Authentication in a Spring Boot OAuth Server? Part 1: Configuration

In this post, I demonstrate how to configure a two-factor authentication functionality for a Spring Boot 2.5 OAuth JWT server, that is a part of a larger Spring Cloud system.

September 14, 2021

by Alexander Eleseev

CORE

· 9,136 Views · 1 Like

Spring Security With LDAP Authentication

In this article, an author shares their experience with Spring Security on a demo purpose application of which the source code is available on Github.

September 13, 2021

by Dilek Karadaş Mataracı

· 26,976 Views · 9 Likes

Creating Secure Private Networks With ZeroTier VPN

Create a secure private network with ZeroTier VPN. It helps safely connect to your machines from all over the world, and manage the network with REST API.

September 9, 2021

by Tomasz Waraksa

CORE

· 13,254 Views · 9 Likes

Token-Based Security, OAuth 2.0, OIDC and IdentityServer4: Part 2

We'll learn about some of the details of OAuth2 and OIDC, see different OAuth players and discuss the different types of OAuth flows for different kinds of applications.

September 1, 2021

by Jawad Hasan Shani

CORE

· 4,819 Views · 2 Likes

Building Zero Trust with an API Gateway and Service Mesh

In this post, we’ll take a close look at how Kong Gateway and the Kuma service mesh fit into a Zero Trust architecture security design.

August 30, 2021

by Michael Bogan

CORE

· 11,008 Views · 4 Likes

The Latest Security Topics