Collaborate Disseminate
Earlier this year, I spent some time in San Fran with friend and Bugcrowd founder Casey Ellis where we recorded a Pluralsight “Play by Play” titled Bug Bounties for Companies. I wrote about that in the aforementioned post which went out in May and I mentioned back then…
Continue reading New Pluralsight Course: Bug Bounties for Researchers
I love so many of the underlying principles of GDPR as it relates to protecting our personal data. I love the idea of us providing it for a specific purpose and it not being used beyond that. I love that it seeks to give us more control over access to…
Continue reading New Pluralsight Course: The State of GDPR – Common Questions and Misperceptions
Try publishing something to the internet – anything – and see how it long it takes before something nasty is probing away at it. Brand new website, new domain and it’s mere hours (if not minutes) before requests for wp-admin are in the logs. Yes, I know it’s not a…
Continue reading New Pluralsight Course: Bug Bounties for Companies
It’s a new Pluralsight course! Yes, I know I said that yesterday too, but this is a new new Pluralsight course and it’s the second part in our series on Creating a Security-centric Culture. As I wrote there back in Jan, we’re doing this course on a quarterly basis and…
Pluralsight priced the shares in its IPO at $15 this afternoon, above its previously set target range of between $12 and $14, and will raise as much as $357 million ahead of its public debut tomorrow morning. Pluralsight offers software development courses, specifically ones targeting employees that are looking to advance in their careers by […] Continue reading Pluralsight prices its IPO at $15 per share, raising over $300M
Just a tad over 5 years ago, I released my first ever Pluralsight course – OWASP Top 10 Web Application Security Risks for ASP.NET. More than 32k people have listened to more than 78k hours of content in this course making it not just the most popular course I’ve…
Ah JavaScript, the answer to – and cause of – all our problems on the web today! Just kidding, jQuery has solved all our JS problems now…
But seriously, JS is a major component of so much of what we build online these days and as with our other online…
Continue reading New Pluralsight Course: JavaScript Security Play by Play
I was chatting to some folks at a bank just the other day about a bunch of modern web security standards. Whilst this blog post is about a Pluralsight course I created with Lars Klint, it only really hit me during that bank conversation just how much there is to…
Continue reading New Pluralsight Course: Modern Web Security Patterns
Usually when we talk about information security, we’re talking about the mechanics of how things work. The attacker broke into a system due to a reused password, there was SQL injection because queries weren’t parameterised or the company got ransomware’d because they didn’t patch their things. These are all good…
Continue reading We’re Doing an All New Series on Pluralsight: Creating a Security-centric Culture
Regular readers will know I create a lot of Pluralsight courses. It’s now 5 years ago I started writing my first one which incidentally, is still my highest rated course every month (apparently the OWASP Top 10 as it relates to ASP.NET is still a big thing). Most of…
Continue reading New Pluralsight Course: Care and Maintenance of Development VMs