Log4j: A forcing function to adopt long-overdue continuous security

Why Log4Shell could be the worst software vulnerability ever

Five fundamental tips for getting executive buy-in on AppSec

Introduction to GraphQL API security

The SANS/CWE Top 25 dangerous software errors of 2021

Building a secure SDLC for web applications

The secret to getting results, not noise, from your DAST solution

What government agencies need to know about CISA’s new Binding Operational Directive