Java
Password Security: Why Hashing is Essential
Password security is an often underestimated but critical topic in software development. Databases containing millions of user logins are …
Security
28 articles
Java
Short links, clear architecture – A URL shortener in Core Java
A URL shortener seems harmless – but if implemented incorrectly, it opens the door to phishing, enumeration, and data leakage. In this first …
Security
DNS Attacks - Explained
1. Getting started – trust in everyday internet life Anyone who enters a web address like “www.example.de” into the browser expects a …
Java
Java Cryptography Architecture (JCA) - An Overview
The Java Cryptography Architecture (JCA) is an essential framework within the Java platform that provides developers with a flexible and …
Java
Cache Poisoning Attacks on Dependency Management Systems like Maven
Cache poisoning on Maven Caches is a specific attack that targets how Maven Caches manages packages and dependencies in a software …
Design Pattern
CWE-778: Lack of control over error reporting in Java
Learn how inadequate control over error reporting leads to security vulnerabilities and how to prevent them in Java applications. Safely …
Java
Understanding TOCTOU (Time-of-Check to Time-of-Use) in the Context of CWE-377
Building on the discussion of “CWE-377: Insecure Temporary File”, it’s essential to delve deeper into one of the most insidious …
Java
CWE-1123: Excessive Use of Self-Modifying Code for Java Developers
Self-modifying code refers to a type of code that alters its own instructions while it is executing. While this practice can offer certain …
Java
CWE-377 - Insecure Temporary File in Java
In software development, temporary files are often used to store data temporarily during an application’s execution. These files may contain …
Java
Securing Apache Maven: Understanding Cache-Related Risks
What is a Package Manager - Bird-Eye View A package manager is a tool or system in software development designed to simplify the process of …
Java
CWE-416: Use After Free Vulnerabilities in Java
CWE-416: Use After Free Use After Free (UAF) is a vulnerability that occurs when a program continues to use a pointer after it has been …
Java
CWE-787 - The Bird-Eye View for Java Developers
The term “CWE-787: Out-of-bounds Write " likely refers to a specific security vulnerability or error in software systems. …