#threat-modeling

Articles tagged with #threat-modeling

OS Command Injection: Security Architect's Perspective (Part 2)
In Part 1 of this series, we cover OS command injection vulnerabilities from a developer's perspective. We looked at secure coding approaches with ProcessBuilder, whitelist-based validation strategies
May 11, 202622 min read3
Directory Traversal: A Security Architect's Perspective (Part 3)
In Part 1 and Part 2 of this series, we examined directory traversal from a developer's perspective, covering attack vectors, secure coding patterns, Apache Commons IO usage, frontend security conside
Apr 28, 202616 min read14