Collaborate Disseminate
I was chatting to some folks at a bank just the other day about a bunch of modern web security standards. Whilst this blog post is about a Pluralsight course I created with Lars Klint, it only really hit me during that bank conversation just how much there is to…
Continue reading New Pluralsight Course: Modern Web Security Patterns
Usually when we talk about information security, we’re talking about the mechanics of how things work. The attacker broke into a system due to a reused password, there was SQL injection because queries weren’t parameterised or the company got ransomware’d because they didn’t patch their things. These are all good…
Continue reading We’re Doing an All New Series on Pluralsight: Creating a Security-centric Culture
Regular readers will know I create a lot of Pluralsight courses. It’s now 5 years ago I started writing my first one which incidentally, is still my highest rated course every month (apparently the OWASP Top 10 as it relates to ASP.NET is still a big thing). Most of…
Continue reading New Pluralsight Course: Care and Maintenance of Development VMs
As many followers know, I run a workshop titled Hack Yourself First where I spend a couple of days with folks running through all sorts of common security issues and, of course, how to fix them. I must have run it 50 times by now so it’s a pretty well-known…
Continue reading New Pluralsight Play by Play: What You Need to Know About HTTPS Today
It’s another Pluralsight course! I actually recorded Emerging Threats in IoT with Lars Klint back in June whilst we were at the NDC conference in Oslo. It’s another “Play by Play” course which means it’s Lars and I sitting there having a conversation like this:
We choose to…
Continue reading New Pluralsight Course: Emerging Threats in IoT
Pluralsight is announcing a new tool this morning to help satiate our innate desire to compare ourselves against one another. Pluralsight IQ is designed to assist developers in assessing their competencies and determining their proficiencies relative to their peers. Engineers taking the test are assigned scores between zero and 300 along with an indicator of attainment — novice,… Read More Continue reading Pluralsight IQ allows engineers to compare skills and proficiencies
I’ve been really actively involved with building things on Microsoft’s Azure cloud for probably about 4 or 5 years now. Many of you will know already that Have I been pwned (HIBP) was built from the ground up on Azure (in fact, one of the reasons I built the service
Continue reading New Pluralsight course: Azure Beyond Websites
It’s a great time for HTTPS. Actually, there’s never been a better time and as each day goes by, we see constant reminders of how important it is. Someone sent me a great example of this just the other day by virtue of a bug that had been lodged with
Continue reading New Pluralsight Course: What Every Developer Must Know About HTTPS
This whole “personal brand” thing is a really interesting space. I mean here we are talking about people as individuals such as you and I yet applying a term to us in the same way as we’d talk about brands like, say “Ferrari” or “Apple”. I pick those simply because
Continue reading New Pluralsight Course: Crafting a Brand for Growth and Prosperity
Many people will disagree with this post, not so much because it’s flat out wrong but because there are so many different approaches one can take. It’s a very subjective realm but I’m going to put forward some suggestions, make some considered arguments and leave it at that.
The context
Continue reading Careers in security, ethical hacking and advice on where to get started