In this post we describe an analysis of the security patches introducted by GitHub Enterprise Server (GHES) release 3.11.3 [1]. It covers…
With the market of mobile application development (the famous “mobile apps”) growing considerably, attacks on mobile…
It is increasingly common to see that companies are projecting their solutions to web applications, transforming their business to be more…
The development market seems to be becoming more and more aware of the need for Application Security Training (AppSec).
However, the…
JWT (JSON WEB Tokens) is an open standard, documented by RFC-7519, that defines how to transmit and store JSON objects in a simple, compact…
We have a new application or module written in the Go language that we want to analyze. So how do we approach that?
The goal of this…
At CONVISO we aim at quality and coding security.
For this we look for better practices to complete all of our services with great…
A few years ago, the Conviso team realized that it needed to find a way to organize activities carried out with clients. It was necessary to…
In the first part of our article, we talk about the basic concepts of security testing. In this second part, we will deal more directly with…