.svg "2024_Full_Logo_Full_Color_SVG (1)"){kind=logo}
Cooking up Better Security Incident Communications
I am fond of meal kits. I enjoy the entire experience: the scrolling through delicious-looking meal ...
Continue Reading
Asset Discovery
The first step in securing any organization is to understand what you have. Unless you have a ...
Continue Reading
Getting Started API Penetration Testing with Insomnia
In our blog series on Better API Penetration Testing with Postman we discussed using Postman as the ...
Continue Reading
![[Update] Using Components with Known Vulnerabilities](https://www.secureideas.com/hubfs/businessman%20hand%20showing%20partnership%20sign%20as%20%20concept.webp)
[Update] Using Components with Known Vulnerabilities
When an organization has a breach, you would like to imagine that the attacker crafted a new ...
Continue Reading
Kubernetes Security - A Useful Bash One-Liner
Whether you’re an administrator, pentester, devop engineer, programmer, or some other IT person, ...
Continue Reading
How I Became a Security Consultant: AbsoluteAppsec Interview
Every so often, podcasts and such will invite me to speak on a variety of topics. And this week, I ...
Continue Reading
Once upon a time there was a WebSocket
This is the story from one of our recent penetration testing engagements. Still, the story is a ...
Continue Reading
Building Blocks: Professionally Evil Fundamentals Series
We at Secure Ideas love security education. What we enjoy even more is affordable security ...
Continue Reading
It's Okay, We're All On the SameSite
With Google’s recent announcement that all cookies without a SameSite flag will be treated as ...
Continue Reading
Top 10 Blog Lists
We have written a lot over the past year and beyond, and we wanted to provide you with our Top 10 ...
Continue Reading
In Case of Fire: Break Windows
When a client calls us to pentest a web application that is only available in Internet Explorer. I ...
Continue Reading