Posts
All the articles I've posted.
I've fuzzed the Hashicorp's Vault API. Here are my findings (1)
Published: at 09:02 PMI've fuzzed the Hashicorp's Vault API using CATS. Here are my findings (1).
Negative API testing on steroids
Published: at 08:58 PMHow to write negative tests for APIs: fast, ideally with no development effort and let you focus on the exploratory part, you know, the one that actually challenges your brain.
An incomplete list of practices to improve security of your (micro)services
Published: at 07:45 PMA list of practices to improve security of your (micro)services. It's not a full list, nor a silver bullet. But it will establish a solid foundation which will minimize the possibility for security issues to happen.