| | The SDLC is changing and so will AppSec (again) (boringappsec.substack.com) |
| 2 points by joj123 9 months ago | past |
|
| | Security slows down Change Management and we have a chance to fix it (boringappsec.substack.com) |
| 1 point by joj123 10 months ago | past |
|
| | Why ADR v/s Shift-left is the wrong way to think about AppSec (boringappsec.substack.com) |
| 2 points by joj123 on Jan 28, 2025 | past |
|
| | Gen AI can supercharge your AppSec program (boringappsec.substack.com) |
| 1 point by ProdSecBurner on Dec 18, 2023 | past |
|
| | Pentesting LLM Apps 101 (boringappsec.substack.com) |
| 3 points by iambroot on Oct 14, 2023 | past | 1 comment |
|
| | Managing LLM risk for companies using 3rd party LLMs (boringappsec.substack.com) |
| 1 point by joj123 on Aug 13, 2023 | past |
|
| | A framework to securely use LLMs in companies – Part 1: Overview of Risks (boringappsec.substack.com) |
| 136 points by sys42590 on July 19, 2023 | past | 25 comments |
|
| | Degrading UX to improve security hurts both UX and security (boringappsec.substack.com) |
| 2 points by joj123 on May 31, 2023 | past |
|
| | Security's Prioritisation Problem (boringappsec.substack.com) |
| 1 point by joj123 on May 8, 2023 | past |
|
| | Is CloudSec the new AppSec? tldr – not quite (boringappsec.substack.com) |
| 1 point by joj123 on Feb 21, 2023 | past |
|
| | A simple framework on when WAFs work and when they may not (boringappsec.substack.com) |
| 1 point by joj123 on Jan 2, 2022 | past |
|
| | Top AppSec metrics and why they are hard to measure (boringappsec.substack.com) |
| 2 points by joj123 on Sept 19, 2021 | past |
|
| | Boring Appsec (boringappsec.substack.com) |
| 1 point by joj123 on Aug 29, 2021 | past |
|
