Jim Manico

@manicode

AppSec enthusiast. Manicode Security founder. Investor in BitDiscovery, KSOC, Helios, Secure Circle, Nucleus and Signal Sciences. Java Champion. OWASP ❤️er.

Anahola, HI
Vrijeme pridruživanja: srpanj 2009.

Tweetovi

Blokirali ste korisnika/cu @manicode

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @manicode

  1. Prikvačeni tweet
    18. pro 2017.

    From my experience all software developers are now security engineers wether they know it, admit to it or do it. Your code is now the security of the org you work for.

    Poništi
  2. prije 4 sata

    Do any static analysis engines specialize in or do really well against .NET core?

    Poništi
  3. 1. velj

    Absolutely one of my favorite folks in InfoSec is - she is such a sweet and smart human being! 🤙🏼

    Poništi
  4. 1. velj
    Poništi
  5. proslijedio/la je Tweet
    31. sij
    Odgovor korisnicima i sljedećem broju korisnika:

    It’s funny, I would argue the things I’m talking about scale really effectively. It is different work, but it works at scale. The idea that there is a magic bullet that is going to help you really secure 1000’s of services without human attention seems far fetched to me.

    Poništi
  6. 31. sij

    Getting ready to depart a London a few hours before they leave the EU. Heathrow was quite empty this morning which surprised me. I expected many trying to leave before the riots and looting began...

    Poništi
  7. proslijedio/la je Tweet
    30. sij
    Odgovor korisniku/ci

    Like policy dev and threat modelling and digital transformation and security architecture any of the above takes 3-5 Yair’s to be good at. Maybe they’re looking for an immortal to 200 years experience to fill the role....

    Poništi
  8. proslijedio/la je Tweet
    31. sij
    Odgovor korisnicima i sljedećem broju korisnika:

    Here is a blog I wrote on how I approached it. But actual implementation will probably given at a talk at my local Owasp in late summer. I will post slides after.

    Poništi
  9. proslijedio/la je Tweet
    31. sij
    Odgovor korisnicima i sljedećem broju korisnika:
    Poništi
  10. proslijedio/la je Tweet
    30. sij

    Breaking Down the OWASP API Security Top 10, Part 2 via

    Poništi
  11. proslijedio/la je Tweet
    31. sij

    Ready to incorporate security into your ? has the 10 best practices for :

    Poništi
  12. proslijedio/la je Tweet
    31. sij
    Odgovor korisnicima i sljedećem broju korisnika:

    At the risk of stating the obvious and pandering to your followers Jim, this is also a great reason for enhanced developer education*, clear requirements, tests including security and every pr security code reviewed. *I wonder who could help with that?

    Poništi
  13. 31. sij
    Poništi
  14. proslijedio/la je Tweet
    31. sij

    Has anyone tested/found any good tools for automating REST API security testing? That you would recommend of course Pls RT for reach cc

    Poništi
  15. 31. sij

    One of the top JavaScript security pros I know of. This is a yuge opportunity!

    Poništi
  16. proslijedio/la je Tweet
    31. sij

    Do stateless REST with tokens etc for right reasons like scalability. It might not be ‘REST’ but for smaller use cases don’t be afraid to save state.

    Poništi
  17. proslijedio/la je Tweet
    30. sij

    Slides for my “OAuth 2.0 Security Best Practices” talk from yesterday can be found here:

    Poništi
  18. proslijedio/la je Tweet
    31. sij

    Bye, bye - was great as always

    Poništi
  19. proslijedio/la je Tweet
    30. sij

    After stock drops by 20% on privacy violation news, the company reacts by shutting down their subsidiary that was selling the usage data.

    Prikaži ovu nit
    Poništi
  20. 30. sij
    Poništi
  21. proslijedio/la je Tweet
    30. sij
    Odgovor korisniku/ci

    Around 18% of Internet content is related to Ad, tracking, marketing. That’s a lot of shit in the pipe.

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·