Finally the day I gave the talk is arrived and it’s gone. Going on stage in front a more than 450 talented developers was an astonishing experience. It drove me crazy. My ...

I’m too tired, even for rest. It’s a sunny sunday afternoon here in Cracow and I’m on my hotel room writing this post. This night was almost sleepless so I had the ...

A month ago I opened a “one question only” survey on surveytmonkey. I asked “Why you don’t make any web application penetration test when I deploy a new web application (or a ...

It happens all the time I have to deliver a talk. Some days before my anxiety-meter level goes out of scale. It will last until slide number 4 when I will recall ...

Julie Powell is an American writer who creates a blog back in 2002. She wrote about an American woman lived in Paris in 1949-or-something that innovates American cooking scenario writing a book ...

It was a year ago when I started the armoredcode.com project. The goal, it’s useful to recall it, is to talk to developers about application security. And this evening there are three ...

With a colleague we were wondering about how much difficult is to create an application security awareness climate in big corporate development team. Please bear in mind that since I’m working in ...

Jim Manico is a friend and a rinomated security professional. He announced in Owasp mailing list that a Ruby on Rails cheatsheet is available. I asked Jim to introduce himself. Jim Manico ...

Even before starting writing complex input filters to manage your users’ input, you must care about the password you use on your servers. If they are poor, no application security on Earth ...

Some days ago, on a Facebook.com group about Italian startups, a smart guy said he had a breakthrough product he is going to develop: a cloud based solution to store people sensitive ...