Posts
2025
Creating KPIs for an AppSec Program
·751 words·4 mins
Creating KPIs for an AppSec Program: A Possible Path # If you work with application security (AppSec) and have had to define monitoring metrics, you’ve probably faced the same difficulty as I have: how to create KPIs that really make sense?
2024
The Book Project Security for Developers
·495 words·3 mins
In 2020, I started working on a project that always seemed very necessary to me: a book about security for developers.
eBPF in Action
·554 words·3 mins
Atention!
Threat Modeling Intro
·2474 words·12 mins
Introduction # Threat Modeling is an essential practice for teams looking to identify and mitigate threats and vulnerabilities in their systems.
Misconfiguration Vulnerabilities in Reverse Proxies: A Comprehensive Guide
·976 words·5 mins
Misconfiguration Vulnerabilities in Reverse Proxies: A Comprehensive Guide # Introduction # Reverse proxies are a crucial component in modern web architectures, handling requests between clients and backend servers.
Python Injection
·412 words·2 mins
Telegram Bot with Injection Vulnerability # This project demonstrates a simple Telegram bot implemented in Python using the python-telegram-bot library.
2023
Devsec Links #10
·603 words·3 mins
Written by Geovana & Guisso
Devsec Links #09
·583 words·3 mins
Written by Geovana & Guisso
Devsec Links #08
·480 words·3 mins
Written by Geovana & Guisso
Devsec Links #07
·433 words·3 mins
Written by Geovana & Guisso