Click here to Skip to main content

Articles by CdnSecurityEngineer (Technical Blogs: 8, Tip/Trick: 1)

Technical Blogs: 8, Tip/Trick: 1

RSS Feed
No articles have been posted.

Average blogs rating: 4.86

Client side scripting
General
Posted: 11 Feb 2013   Updated: 11 Feb 2013   Views: 4,074   Rating: 5.00/5    Votes: 1   Popularity: 0.00
Licence: The Code Project Open License (CPOL)      Bookmarked: 1   Downloaded: 0
Intro This is the second post in a series on cross site scripting(XSS). In this entry I examine cross site scripting and the way that it can creep into our programs and what different cross site scripting input strings look like. Once we develop a deep understanding of XSS, I’ll show you how t
Posted: 19 Feb 2013   Updated: 19 Feb 2013   Views: 2,260   Rating: 5.00/5    Votes: 2   Popularity: 1.51
Licence: The Code Project Open License (CPOL)      Bookmarked: 1   Downloaded: 0
Intro This is post #3 on a cross site scripting tutorial, during this post I examine how to exploit xss attack vectors in a variety of manners & their consequences. I have decided not to make the code, demonstrable for this entry. The reason being is the code could be used for less then good [...]
Web Security
General
Posted: 10 Jul 2013   Updated: 11 Jul 2013   Views: 4,789   Rating: 4.86/5    Votes: 5   Popularity: 3.36
Licence: The Code Project Open License (CPOL)      Bookmarked: 6   Downloaded: 0
I prove everyone who’s ever said XSS isn’t a serious vulnerability wrong.
Posted: 25 Jul 2013   Updated: 25 Jul 2013   Views: 4,160   Rating: 5.00/5    Votes: 1   Popularity: 0.00
Licence: The Code Project Open License (CPOL)      Bookmarked: 3   Downloaded: 0
The reality is that, today’s information security landscape sucks, attacks are becoming more sophisticated, and getting folks involved in producing the software thinking about security seems like a losing battle.
Security
Posted: 11 Feb 2013   Updated: 11 Feb 2013   Views: 2,037   Rating: 5.00/5    Votes: 2   Popularity: 1.51
Licence: The Code Project Open License (CPOL)      Bookmarked: 3   Downloaded: 0
Intro Many organizations have switched in recent years to performing some form of code review, this trend is absolutely great as I am a big believer in the code review as part of early defect detection strategies. During the course of the normal code review, developers are looking for things such as
Content Management Server
General
Posted: 30 Jan 2014   Updated: 30 Jan 2014   Views: 3,384   Rating: 4.74/5    Votes: 9   Popularity: 4.77
Licence: The Code Project Open License (CPOL)      Bookmarked: 7   Downloaded: 0
Exploiting managed memory
Work Issues
Recruiting and Job hunting
Posted: 11 Feb 2013   Updated: 11 Feb 2013   Views: 7,280   Rating: 4.25/5    Votes: 4   Popularity: 2.61
Licence: The Code Project Open License (CPOL)      Bookmarked: 4   Downloaded: 0
I truly believe programing tests during an interview are pointless.
Reviews on Third Party Products and Tools
General
Posted: 19 Feb 2014   Updated: 19 Feb 2014   Views: 2,945   Rating: 5.00/5    Votes: 1   Popularity: 0.00
Licence: The Code Project Open License (CPOL)      Bookmarked: 0   Downloaded: 0
I’ve been in the high tech market for 8 years now, granted compared to some of my colleagues I am still the neophyte in the cube block. In those eight years, I’ve worked for big companies and start ups alike.…Read more ›

Average tips rating: 5.00

Web Security
General
Posted: 7 Feb 2013   Updated: 7 Feb 2013   Views: 3,259   Rating: 5.00/5    Votes: 2   Popularity: 1.51
Licence: The Code Project Open License (CPOL)      Bookmarked: 8   Downloaded: 0
It only takes a few minutes to run a ZAP attack scan, which can quite possibly save your firm and you a lot of trouble in the future!
No reference articles have been posted.

CdnSecurityEngineer
Engineer
Canada Canada
I am a Sr Engineer for a major security firm; I have been developing software professionally for 8 years now; I've worked for start ups, small companies, large companies, myself, education. Currently the company I work for has 7,000+ employees worldwide. I am responsible for our platform security, I write code, implement features, educate other engineers about security, I perform security reviews, threat modeling, continue to educate myself on the latest software. By night, I actively work to educate other developers about security and security issues. I also founded a local chapter of OWASP which I organize and run.
 
I cut my teeth developing in C++ and it's still where my heart is with development, lately I've been writing a lot of C# code & some java, but I do have a project or two coming out in C++ /DiectX 11 whenever I get the time.
 
When I am not developing code I am spending my time with my wife and daughter or I am lost deep in the woods some where on a camping trip with friends. If you can't find me with a GPS and a SPOT device then chances are I am on the Rugby pitch playing Rugby and having a great time doing so.
 

You can find more about me and My thoughts on security
Follow on   Twitter


Advertise | Privacy | Mobile
Web01 | 2.8.140421.2 | Last Updated 24 Apr 2014
Copyright © CodeProject, 1999-2014
All Rights Reserved. Terms of Use
Layout: fixed | fluid