@nick79

Directory Traversal in Java: A Comprehensive Security Guide (Part 1)

2d ago · 16 min read · Directory traversal vulnerabilities are at the core of a failure in the boundary between application logic and filesystem access. There is a tendency to focus on SQL injection, but directory traversal

Building an Application Security Metrics Program: Measuring What Actually Matters

Mar 30 · 27 min read · Security architecture is not just about selecting the right controls or designing secure systems. It is about proving those controls work, tracking their effectiveness over time, and communicating res

DiffGuard: LLM-Powered Security Review for Staged Git Diffs

Mar 23 · 17 min read · We ship code every day. In that code, there is often a SQL injection that nobody noticed, a hardcoded secret that slipped through review, or an XML parser set up with defaults that should have been se

Authentication Vulnerabilities: Strategic Defense and Organizational Controls (Part 4)

Mar 16 · 18 min read · In the previous parts of this series, we discussed the authentication vulnerability from the developer’s point of view. We discussed password requirements based on NIST guidelines, rate limiting using

Authentication Vulnerabilities in Java: Session Management & Advanced Security (Part 3)

Mar 10 · 22 min read · In Part 1, we discussed the requirements of passwords according to NIST recommendations, various methods of rate limiting using sliding window and exponential backoff, and ways to avoid enumeration of