nathankitchen.com
  • Home
  • Author
Subscribe
Tagged

security

A collection of 3 posts

Continuous Security with OWASP ZAP and Azure DevOps (part 2)
azure

Continuous Security with OWASP ZAP and Azure DevOps (part 2)

In part 2 of a series on leveraging the OWASP ZAP Docker Image in Azure, this post describes how to utilise the ARM template described in Part 1, and embed it into an Azure DevOps pipeline as part of a continuous security regime.

  • Nathan Kitchen
Nathan Kitchen Sep 2, 2019 • 4 min read
Continuous Security with OWASP ZAP and Azure ARM (part 1)
azure

Continuous Security with OWASP ZAP and Azure ARM (part 1)

Automating your delivery pipeline allows you to deliver software quickly, reliably, and with minimal overheads. But as your delivery cadence increases, your security practises have to follow.

  • Nathan Kitchen
Nathan Kitchen Aug 20, 2019 • 4 min read
Reverse-engineering price lists for fun and profit
code

Reverse-engineering price lists for fun and profit

Margin-scaled price sheets are vulnerable to a rounding exploit based on defaults and social factors, and in certain circumstances this allows you to reverse-engineer the markup or margin level purely from the price data itself.

  • Nathan Kitchen
Nathan Kitchen Apr 17, 2019 • 4 min read
nathankitchen.com © 2022
Powered by Ghost