In Depth
In Depth: Storing Environment Variables Safely
[InDepth#17] Let's dive deep into the wonderful world of storing environment variables safely, looking at the different options Laravel supports and some "industry best practices".
Newsletter
Laravel Security In Depth β Securing Laravel
Let's talk about all the changes: new name, new domain, and a purple logo...
In Depth
In Depth: What Are Insecure Functions?
[InDepth#16] According to random folks on the internet (i.e. social media), "insecure functions" are a wide and varied concept. Let's take a look at the common themes across the different ideas...
Newsletter
In Depth: Securing Randomness Without Breaking Things
[InDepth#14] Cryptographically secure randomness is important, but so is backwards compatibility...
Newsletter
Laracon EU 25% off discount π
Laracon EU has arrived, and I'm speaking tomorrow, which means it's time for another discount. π
In Depth
In Depth: "Password Generator" Security Audit
[InDepth#12] In November 2022, Steve McDougall published a tutorial called "Creating a Password Generator"... we're going to audit his code!
Security Tips
OWASP Tip: A10:2021 β Server-Side Request Forgery (SSRF)
Our final entry in the OWASP Top 10 series - be aware of what your servers can access!
Security Tips
OWASP Tip: A09:2021 β Security Logging and Monitoring Failures
You do have logging enabled, right?
Newsletter
Don't forget about 25% off Laravel Security in Depth π
One last reminder about our Black Friday sale on Laravel Security in Depth subscriptions.
Newsletter
Laravel Security in Depth β Black Friday Special Offer
If you've been thinking of upgrading your Laravel Security in Depth subscription, now is the time!
OWASP Top 10
OWASP In Depth: A08:2021 β Software and Data Integrity Failures
It's a three-in-one for the third last entry into our OWASP Top 10 series!
Newsletter
Black Friday Special Offer (yes, I know, another one!)
Get 25% off Laravel Security in Depth forever! π₯³