The Armored Code
A blog talking about offensive and defensive security and how to craft software in a secure way
Untold: Owasp Orizon is died and I'm sad of it
In 2006 I started an ambitious project, an opensource SAST engine built in Java I called Owasp Orizon.
20 Nov 2012
The fragile Internet
It was a yesterday’s news that anonymous and other cracker’s crews attacked and defaced large number of corporate websites.
06 Nov 2012
Border line between marketing and security features
Make a web application penetration test is becoming tricky due modern browsers native anti-xss filtering facilities (they only work for reflected cross site scripting).
05 Nov 2012
The hidden pitfalls in automatic source code review
Disclaimer: this is an in depth post about pitfalls in security code reviews. A codesake.com focused post is available on codesake.com blog
28 Oct 2012
Adding basic authentication support to wpscan
wpscan is an opensource tool designed to make assessment over wordpress installations.
23 Oct 2012
Are web agencies the new security threats in 2013?
An economical crisis time has been started 4 years ago and this eventually changed how people engage contractors to develop code.
22 Oct 2012
Never miss a
from us, subscribe to our newsletter