Best of SecurityDecember 2023

  1. 1
    Video
    Avatar of fireshipFireship·2y

    10 weird algorithms

    Explore 10 weird algorithms that are used to solve interesting real-world problems in science, gaming, machine learning, and digital security.

  2. 2
    Article
    Avatar of freecodecampfreeCodeCamp·2y

    innerHTML vs innerText vs textContent – What's the Difference?

    Learn about the differences between innerHTML, innerText, and textContent properties in HTML and how they handle HTML markup and content. Be cautious when using innerHTML due to security risks. innerText focuses on rendered text content, while textContent ignores HTML tags and includes hidden content. Update content using all three properties.

  3. 3
    Article
    Avatar of permitioPermit.io·2y

    What is Token-Based Authentication?

    Explore the concept of token-based authentication, including its advantages over sessions, the different types of tokens used, and the mechanics of how it works.

  4. 4
    Article
    Avatar of justanotherctoJust Another CTO·2y

    Security at Startup

    Security is often overlooked in software engineering, but it is crucial for startups. This post provides tips and best practices for securing your startup, including cheap security measures and securing development practices.

  5. 5
    Article
    Avatar of snykSnyk·2y

    Top 3 security best practices for handling JWTs

    Ensure the security of your web applications by following the top 3 security best practices for handling JWTs. Keep JWTs secret, validate them properly, and set expiration times to prevent vulnerabilities and breaches. Use tools like Snyk to identify and remediate security issues related to JWTs.

  6. 6
    Article
    Avatar of asayerasayer·2y

    Mastering Next.js Authentication with Auth0: A Practical Guide

    This article discusses how to add authentication to a Next.js application using Auth0. It covers setting up an Auth0 account, integrating Auth0 with Next.js, implementing authentication, handling authentication callbacks, and adding authorization.

  7. 7
    Article
    Avatar of ghblogGitHub Blog·2y

    GitHub’s top blog posts of 2023

    GitHub's top blog posts of 2023 include highlights on GitHub Copilot, productivity and security tools, behind-the-scenes insights, and the popularity of Python and Rust.

  8. 8
    Article
    Avatar of systemweaknessSystem Weakness·2y

    Securing the Frontend: A Practical Guide for Developers

    Balancing frontend development and cybersecurity is crucial for creating a secure digital ecosystem. Understanding and mitigating threats like XSS and CSRF is essential. Best practices include secure coding, input validation, Content Security Policy (CSP), monitoring, and updates. Integrating security into the user experience involves clear communication, streamlined authentication, progressive information disclosure, user education, and customization. Real-world case studies from Google, GitHub, Facebook, Stripe, and Slack show successful security implementations. Developers are encouraged to prioritize security from the beginning and continue learning and evolving in the ever-changing threat landscape.

  9. 9
    Article
    Avatar of communityCommunity Picks·2y

    Google Dorking: Vital for Cybersecurity

    Mastering Google Dorking is essential for cybersecurity professionals as it can uncover hidden information and security loopholes within websites and applications. It is used for identifying vulnerabilities, enhancing penetration testing, and staying ahead of attackers. Google Dorking plays a crucial role in OSINT by allowing experts to rapidly locate targeted information, identify vulnerabilities, and perform competitor analysis. Basic and advanced dorks are used for different purposes, and it is important to use Google Dorking ethically and legally. The Google Hacking Database (GHDB) is a valuable resource for cybersecurity professionals for finding sensitive information. Mastering Google Dorking is necessary for safeguarding digital assets and improving cybersecurity practices.

  10. 10
    Article
    Avatar of codemazeCode Maze·2y

    Implement Custom Authorization Policy Provider in ASP.NET Core

    Learn how to implement a custom authorization policy provider in ASP.NET Core to dynamically fetch and provide authorization policies based on specific requirements.

  11. 11
    Article
    Avatar of asayerasayer·2y

    Working with Environment Variables in React

    Learn how to work with environment variables in React. Environment variables provide security, configuration management, and adaptability benefits to applications.

  12. 12
    Article
    Avatar of medium_jsMedium·2y

    Laravel: Easy Two-Factor Authentication with Email and SMS

    Learn how to enable two-factor authentication (2FA) in Laravel using email and SMS. Boost your app's security and protect your users' accounts with this easy step-by-step guide.

  13. 13
    Article
    Avatar of rustlibRush LibHunt·2y

    Awesome Rust Weekly - Issue 392, Dec 28, 2023

    This post provides a weekly overview of popular Rust news, articles, and packages. It includes topics such as improving supply chain security for Rust, using Onboard AI with GitHub repos, and the purpose of a lightweight message queue in Rust.

  14. 14
    Article
    Avatar of braveBrave·2y

    Secure, Fast, & Private Web Browser with Adblocker

    Browse privately, search privately, and block trackers and ads with the secure, fast, and private web browser, Brave. It is 3x faster than Chrome and offers advanced security features, Brave Rewards for earning crypto tokens, and a built-in crypto wallet.

  15. 15
    Article
    Avatar of v8V8·2y

    V8 is Faster and Safer than Ever! · V8

    V8 has achieved impressive accomplishments in 2023, including performance optimizations, new features for Javascript and WebAssembly, and prioritizing safety. Highlights include the introduction of Maglev, a new optimizing compiler, and improvements to the top-tier compiler Turbofan. The HTML parser and DOM allocations have been optimized for faster performance. V8 has also added new JavaScript features and made updates to WebAssembly. The WebAssembly Garbage Collection (WasmGC) has been shipped, enabling the use of garbage-collected languages in Wasm. V8 has also focused on security, including sandboxing, fuzzing, and Control-flow Integrity (CFI). Overall, V8 is faster and safer than ever.

  16. 16
    Article
    Avatar of asayerasayer·2y

    Developer's Guide: Best Practices for Ensuring Robust API Security

    Learn about API security and the risks associated with it, such as broken object-level authorization, broken authentication, and unrestricted resource consumption. Understand the importance of implementing mitigation strategies to safeguard APIs.

  17. 17
    Article
    Avatar of firebase-developersFirebase Developers·2y

    Best practices for authenticating using Firebase

    Learn about the best practices for authenticating using Firebase. Explore options such as anonymous authentication and federated authentication with trusted third-party providers. Discover the benefits of multi-factor authentication for added security.

  18. 18
    Article
    Avatar of snykSnyk·2y

    Secure password hashing in Go

    Learn about the best practices for password hashing, common attack methods used to crack hashed passwords, and the available hashing algorithms in Go.

See all Security archives