armoredcode.com is a technical blog about application security in the most extended meaning. Unlike other application security blog, the perspective is not only from the attacker point of view but also from the developer’s one. We won’t only discuss about hot vulnerabilities out there or exploits or security book or tools review but we will focus also on how to use test driven development to spot security issues and how to remediate while we’re stille developing our applications. We will bring you the idea that making a web application is like cooking a delicious cake; both software engineering than application security are parts of the same recipe. No one can stand without the other.
Recent blog post
Ruby and omniauth-facebook gem security issues this week
A couple of days ago, on Italian Ruby mailing list, Paolo Montrasio reported two security issuesoccured in the ruby world. Let’s see them in detail and add codesake-dawn checks for them. CVE-2013-4164: ruby interpreter heap-based buffer overflow The issue...2 weeks ago
User reviewsPersonal attacks are NOT allowed
Please read our comment policy