Black Friday Special Offer (yes, I know, another one!)

Security Tip: Don't Generate Your Own Passwords!

[Tip #113] "Don't Roll Your Own Crypto" applies to password generators too! It's way too easy to unknowingly lower your entropy by trying to be clever... 😱

Security Tip: Don't Use phpinfo()!

[Tip #112] It may seem like a harmless debugging tool, with a bunch of boring config values and version numbers, but phpinfo() is a goldmine of sensitive data - even when it's "protected" in an admin account! 😈

In Depth: A Deep Dive into Laravel's New Starter Kits! (pt 1)

[In Depth #35] Let's take a dive into the security of Laravel's new Starter Kits to see how they handle authentication, what security features they include, and what areas could be improved! 🤓

Security Tip: What Can We Learn from CommonMark's XSS?

[Tip #111] The recently patched XSS in CommonMark's Attributes extension offers an interesting look at what happens when two different features conflict, one being a security feature, the other a knowingly vulnerable extension.

Read more

Security Tip: Don't Generate Your Own Passwords!

Security Tip: Don't Use phpinfo()!

In Depth: A Deep Dive into Laravel's New Starter Kits! (pt 1)

Security Tip: What Can We Learn from CommonMark's XSS?