Your Quest for More Secure GoLang Code Just Got Easier
One of our top priorities is to enhance our Security Dojo with more content that encompasses even more languages and technologies.
Security Journey Blog
Here you’ll find the latest news, information, and trends in application security and compliance, plus tips and strategies for writing safer code and building a security culture.
Stay Up-to-Date on all Security Journey news and events.
Featured Articles
Don't Fall for the Hacker Genius: Secure Coding is About Diligence, Not Brilliance
Many believe only brilliant minds can write secure code, but secure coding is primarily about discipline and understanding vulnerabilities. The most significant data breaches in history stemmed from preventable coding errors rather than genius hacking.
Read More
What You Need To Know About Secure Coding Training for PCI DSS v4.0 Requirements
The latest version of the Payment Card Industry Data Security Standard (PCI DSS), version 4.0, was released in March 2022. Although the requirements won't take effect until 2025, it's crucial to start preparing now.
Read More
Posts by Security Journey/HackEDU Team
Security Journey has been Acquired! – We're Joining Forces with HackEDU.
When you run a bootstrapped application security training startup and have a few years of exceptional revenue growth, you capture the attention of some folks. Here's the Security Journey story.
Secure Websites Rely on Secure PHP
The PHP: Hypertext Preprocessor scripting language remains as popular today as it has been since its debut in 1994. Developers turn to PHP for its simplicity and flexibility.
Gain Practical Skills in Secure Coding and Web Application Security
We talked with Jared Ablon, President and Co-Founder at HackEDU, about the importance of engaging and customized training to develop secure coding practices and perform vulnerability assessments.
Learning How to Reduce Injection Vulnerabilities Risk in Minutes
Last week, we released our Secure Coding Report: Injection Vulnerabilities, which identifies that training software developers on how to best protect against one of the most critical exploits on the...
CyberNews Interview with Jared Ablon
This article is a repost from Cybernews on April 2, 2022.
News Update: Security Journey Provides Free Application Security Training Environment for OWASP® Members
AppSec Things to Watch in 2022
It’s that time of the year again, where everyone under the sun comes up with predictions. We’re not fans of predictions, so instead, we give you Security Journey’s Application Security Things to...
Bridges fall down due to insecure design – make sure your web applications don’t
When it comes to the people designing the bridges I drive across, I want them to use blueprints. I want them to run their design through programs to calculate the exact weight the bridge can hold...
Explain Sigstore to Me Like I'm Five
If you have paid attention to supply chain security in 2021, you've likely heard a lot about Sigstore. If you are still not sure exactly what it is, do not worry. We will provide an explanation that even a child can follow.
Why is Server-Side Request Forgery #10 in OWASP Top 10 2021?
The new #10 on the OWASP Top 10 2021 list is Server-Side Request Forgery (SSRF).