mas.to

27 posts21 participants1 post today

Pyrzout :vm:NIST’s adversarial ML guidance: 6 action items for your security team – Source: securityboulevard.com <a href="https://ciso2ciso.com/nists-adversarial-ml-guidance-6-action-items-for-your-security-team-source-securityboulevard-com/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://ciso2ciso.com/nists-adversarial-ml-guidance-6-action-items-for-your-security-team-source-securityboulevard-com/</a> <a href="https://social.skynetcloud.site/tags/ArtificialIntelligence" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ArtificialIntelligence</a>(AI)/MachineLearning(ML) <a href="https://social.skynetcloud.site/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a>&SupplyChainSecurity <a href="https://social.skynetcloud.site/tags/rssfeedpostgeneratorecho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rssfeedpostgeneratorecho</a> <a href="https://social.skynetcloud.site/tags/SecurityBloggersNetwork" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecurityBloggersNetwork</a> <a href="https://social.skynetcloud.site/tags/CyberSecurityNews" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurityNews</a> <a href="https://social.skynetcloud.site/tags/SecurityBoulevard" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SecurityBoulevard</a>

Endor LabsDevelopers are moving faster than ever with tools like GitHub Copilot and Cursor. But AppSec teams are falling behind.The result? A tidal wave of code 62% of AI-generated code has flaws Nearly 30% contains known security weaknessesExisting tools weren’t built for this.Next week, we’re announcing something new. A new way for AppSec teams to understand what’s changing and why it matters.Stay tuned.<a href="https://mastodon.social/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> <a href="https://mastodon.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://mastodon.social/tags/LLM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LLM</a> <a href="https://mastodon.social/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#DevSecOps</a>

OWASP FoundationExcited for <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU in May? Elevate your experience with mentoring! Join us as a Mentor and create a year long connection helping others! Get involved here: <a href="https://owasp.wufoo.com/forms/zk2cdkr1qla6o8/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/zk2cdkr1qla6o8/</a> 🚀 <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/Barcelona" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Barcelona</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Sean Martin 🎙️✨:verified_paw: :donor:AI-generated code is fast—but is it secure?In this Redefining CyberSecurity episode, we talk vibe coding, developer responsibility, and why security teams need to assume they already have AI-built code in their stack.Featuring Izar Tarandach + Sean Martin on <a href="https://techhub.social/@ITSPmagazine" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@ITSPmagazine</a> 🎧 Watch here: <a href="https://youtu.be/Lv2NTAj3WIY" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://youtu.be/Lv2NTAj3WIY</a><a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/softwareengineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#softwareengineering</a>

BillHuh, what can I do with a value that is reflected into a set-cookie header? I swear I've done something with that before but I can' find it in my notes.<a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a>

OWASP FoundationThank you @SonarSource for supporting <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> 2025 Global AppSec EU as a Silver Exhibitor. We are looking forward to welcoming your team to Barcelona! barcelona.globalappsec.org <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/developers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developers</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/supportnonprofit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#supportnonprofit</a>

OWASP FoundationAre you ready for <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU? 🚀 Be part of the action as a volunteer! Your contribution can make a real impact. Fill out the form today to join something incredible! Don't miss out, sign up here: <a href="https://owasp.wufoo.com/forms/z1jihpei0ws2e3v/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/z1jihpei0ws2e3v/</a> <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a> <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#threatmodeling</a> <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a>

Open Security ConferenceReserve the dates! The Open Security Conference takes place on 2-5 October 2025 in Rückersbach, close to Frankfurt/Main in Germany. We welcome everyone interested in <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> to learn and grow together at <a href="https://infosec.exchange/tags/osco" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#osco</a>. 🔒🌱🛡️ <a href="https://opensecurityconference.org/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://opensecurityconference.org/</a> <a href="https://infosec.exchange/tags/osco25" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#osco25</a> <a href="https://infosec.exchange/tags/InfoSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#InfoSec</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/OTsecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OTsecurity</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://infosec.exchange/tags/OpenSpace" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenSpace</a> [lisi]

BSidesAugustaSilver sponsor @AbrictoSecurity, thank you for your continued support of <a href="https://infosec.exchange/tags/BSidesAugusta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#BSidesAugusta</a>. Your commitment to security excellence is commendable. <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#CyberSecurity</a> <a href="https://infosec.exchange/tags/IncidentResponse" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IncidentResponse</a> <a href="https://infosec.exchange/tags/ZeroTrust" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ZeroTrust</a>

OWASP OttawaTonight the <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/Ottawa" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Ottawa</a> April meetup at 6pm at the UofO STEM building. Micah Clark will help us rethink your approach to finding information, to build systems that keep you focused and curious without getting stuck. <a href="https://infosec.exchange/tags/OSINT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OSINT</a> <a href="https://infosec.exchange/tags/INFOSEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#INFOSEC</a> <a href="https://infosec.exchange/tags/APPSEC" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#APPSEC</a><a href="https://www.meetup.com/owasp-ottawa/events/307060615/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.meetup.com/owasp-ottawa/events/307060615/</a>

OWASP Israel📅 Date: June 5, 2025 📷 Location: Tel Aviv Expo – Pavilion 10 📷 Register now: <a href="https://appsecil.org/reg" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://appsecil.org/reg</a><a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> <a href="https://infosec.exchange/tags/AppSecIL" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSecIL</a> 2/2

OWASP FoundationWe are looking forward to welcoming the @PixEE team to the <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> 2025 Global AppSec EU Barcelona event as a Start-Up Exhibitor! Your support is greatly appreciated. barcelona.globalappsec.org <a href="https://infosec.exchange/tags/developer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developer</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> <a href="https://infosec.exchange/tags/supportnonprofit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#supportnonprofit</a>

OWASP FoundationAttending <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> EU next month? Interested in finding a mentor to help you with your resume, career guidance, or public speaking? Sign up to participate in the Mentor/Mentee program and forge a year long relationship with a mentor to help you! <a href="https://owasp.wufoo.com/forms/zymozl71uei0k3/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://owasp.wufoo.com/forms/zymozl71uei0k3/</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

Tanya Janca | SheHacksPurple :verified: :verified:Would you like to know how mature your <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> program is? Please take my survey to receive a target report based on your answers of how to level up your program—no matter your current maturity level.<a href="https://semgrep.dev/blog/2025/maturing-your-application-security-program-survey/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://semgrep.dev/blog/2025/maturing-your-application-security-program-survey/</a>*Report is free, but you join the Semgrep newsletter.

eShard👀👉 <a href="https://eshard.com/posts/android-trace-execution-recording-for-doing-time-travel-analysis" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://eshard.com/posts/android-trace-execution-recording-for-doing-time-travel-analysis</a><a href="https://infosec.exchange/tags/mobile" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mobile</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/android" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#android</a> <a href="https://infosec.exchange/tags/reverseengineering" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reverseengineering</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

OWASP Foundation🚨 Time's running out! Reserve your expo space for <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> Global AppSec US in DC now before they are gone! <a href="https://infosec.exchange/tags/developers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developers</a> <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> 🔗 <a href="http://dc.globalappsec.org/" rel="nofollow noopener noreferrer" translate="no" target="_blank">http://dc.globalappsec.org/</a>

Boston Security MeetupLast day to RSVP for our April meetup thanks to Wellington (location sponsor) and Black Duck (food sponsor)! Come hear Nikunj Doshi talk about Chaos Engineering and Benny Ma give us some insights on maturing <a href="https://infosec.exchange/tags/devsecops" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#devsecops</a>. RSVP at <a href="https://www.meetup.com/the-boston-security-meetup/events/307186949/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.meetup.com/the-boston-security-meetup/events/307186949/</a> . RSVP closes tonight! <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://infosec.exchange/tags/Infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Infosec</a> <a href="https://infosec.exchange/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a>

HabrКак мы реализовали SCA при помощи SBOMЧем больше микросервисов в компании, тем веселее жизнь у тех, кто отвечает за безопасность. Количество зависимостей растёт, и в какой-то момент становится нереально уследить, откуда в коде может вылезти критичная уязвимость — будь то старая библиотека или транзитивная зависимость, о которой никто даже не помнит. Решение этого — SCA (Software Composition Analysis) автоматический анализ зависимостей, который помогает вовремя вылавливать уязвимые библиотеки и понимать, что с ними делать. Меня зовут Эрик Шахов, я AppSec-инженер в Циан. В этой статье расскажу, как мы перестроили систему SCA, изменили её архитектуру и какие инструменты теперь используем для контроля зависимостей. Поделюсь реальным опытом внедрения SBOM (Software Bill of Materials) и тем, как он помогает нам держать код в порядке.<a href="https://habr.com/ru/companies/cian/articles/900040/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://habr.com/ru/companies/cian/articles/900040/</a><a href="https://zhub.link/tags/trivy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#trivy</a> <a href="https://zhub.link/tags/cyclonedx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cyclonedx</a> <a href="https://zhub.link/tags/%D1%83%D0%BF%D1%80%D0%B0%D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D0%B5_%D0%B7%D0%B0%D0%B2%D0%B8%D1%81%D0%B8%D0%BC%D0%BE%D1%81%D1%82%D1%8F%D0%BC%D0%B8" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#управление_зависимостями</a> <a href="https://zhub.link/tags/sbom" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sbom</a> <a href="https://zhub.link/tags/appsec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#appsec</a> <a href="https://zhub.link/tags/sca" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sca</a> <a href="https://zhub.link/tags/%D1%81%D0%BA%D0%B0%D0%BD%D0%B5%D1%80%D1%8B_%D0%B1%D0%B5%D0%B7%D0%BE%D0%BF%D0%B0%D1%81%D0%BD%D0%BE%D1%81%D1%82%D0%B8" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#сканеры_безопасности</a> <a href="https://zhub.link/tags/cdxgen" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cdxgen</a> <a href="https://zhub.link/tags/%D0%B1%D0%B5%D0%B7%D0%BE%D0%BF%D0%B0%D1%81%D0%BD%D0%B0%D1%8F_%D1%80%D0%B0%D0%B7%D1%80%D0%B0%D0%B1%D0%BE%D1%82%D0%BA%D0%B0" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#безопасная_разработка</a> <a href="https://zhub.link/tags/%D1%81%D0%BA%D0%B0%D0%BD%D0%B5%D1%80%D1%8B_%D1%83%D1%8F%D0%B7%D0%B2%D0%B8%D0%BC%D0%BE%D1%81%D1%82%D0%B5%D0%B9" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#сканеры_уязвимостей</a>

CrowdSec🇮🇹 Hey Italian speaking <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> friends 👋 Our Ambassador <a href="https://mastodon.uno/@inmarvinwetrust" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@inmarvinwetrust</a> dives into deploying a Web Application Firewall in a containerized environment using Docker, Docker Compose, <a href="https://infosec.exchange/tags/Nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Nginx</a> Proxy Manager, and CrowdSec <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a>. Learn how to install, configure, and optimize your setup for scalable and efficient security: <a href="https://blog.marvinpascale.it/posts/2025/waf-docker/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://blog.marvinpascale.it/posts/2025/waf-docker/</a><a href="https://infosec.exchange/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Docker</a> <a href="https://infosec.exchange/tags/WAF" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WAF</a> <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a>

OWASP FoundationWe’re excited to welcome the @ThreatModeler team as a Silver Exhibitor at <a href="https://infosec.exchange/tags/OWASP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OWASP</a> 2025 Global AppSec EU in Barcelona! Thank you for supporting the community and helping advance <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AppSec</a> and <a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cybersecurity</a>. See you there! barcelona.globalappsec.org <a href="https://infosec.exchange/tags/developer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#developer</a> <a href="https://infosec.exchange/tags/supportnonprofit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#supportnonprofit</a>

Recent searches

Search options

Administered by:

Server stats:

#appsec