PinnedKrzysztof PranczkinITNEXTWeb API Security Champion: Broken Object Level Authorization (OWASP TOP 10)Explaining one of the most common web API vulnerability classes — Broken Object Level Authorization in a practical manner. Providing a…7 min read·Apr 22, 2024----
PinnedKrzysztof PranczkinITNEXTSecurity Code Challenge for Developers & Ethical Hackers — The Damn Vulnerable RESTaurantIntroduction to a security code challenge dedicated to developers and ethical hackers. It focuses on security vulnerabilities in Web API.7 min read·Apr 3, 2024----
PinnedKrzysztof PranczkinITNEXTPython for DevSecOps and Any Security EngineerDoes DevSecOps Engineer need programming skills? What is the value of utilising Python for security purposes? What you need to learn to…9 min read·Oct 11, 2023--5--5
PinnedKrzysztof PranczkA Practical Approach to SBOM in CI/CDThe article covers the concept of SBOM, its advantages, popular formats and practical implementations for both Java and Python projects.7 min read·Sep 17, 2023--3--3
Krzysztof PranczkinITNEXTDetecting Banker Malware Installed on Android DevicesThis article presents mechanisms and ideas for detecting malicious applications installed on Android devices that abuse the…12 min read·Mar 20, 2024--1--1
Krzysztof PranczkinITNEXTIntroduction to Security in SDLC with SAST for Developers and Security EngineersIn today’s landscape, automation plays a crucial role in various development activities, ranging from ensuring code quality and performing…8 min read·Feb 23, 2024----
Krzysztof PranczkinITNEXTExploring secureCodeBox — An Open-Source Continuous Security Testing Solution for DevSecOpsA Comprehensive Review of secureCodeBox — an Open-Source Platform for Continuous Security Utilizing Popular Testing Tools. Presenting…11 min read·Jan 29, 2024--2--2
Krzysztof PranczkinITNEXTA Programmer’s Journey: Crafting a Python API Client for the On-line Game Using ChatGPTSharing my experience with ChatGPT as an LLM sceptical person. The article presents development of a basic Python API client for Age of…9 min read·Jan 15, 2024----
Krzysztof PranczkinITNEXTComparing DefectDojo Pro and OWASP Edition for DevSecOpsA review of DefectDojo Pro — a paid version of a well-known vulnerability management solution: Does DefectDojo Pro address all the pain…11 min read·Jan 9, 2024--1--1
Krzysztof PranczkinITNEXTIntroduction to Kubernetes Security for Security ProfessionalsPresenting the architecture of Kubernetes and its associated security threats, for security professionals, including penetration testers…9 min read·Dec 27, 2023----