Java
Password Security: Why Hashing is Essential
Password security is an often underestimated but critical topic in software development. Databases containing millions of user logins are …
Security
30 articles
Java
Short links, clear architecture – A URL shortener in Core Java
A URL shortener seems harmless – but if implemented incorrectly, it opens the door to phishing, enumeration, and data leakage. In this first …
Java
Creating a simple file upload/download application with Vaadin Flow
Vaadin Flow is a robust framework for building modern web applications in Java, where all UI logic is implemented on the server side. In …
Security
DNS Attacks - Explained
1. Getting started – trust in everyday internet life Anyone who enters a web address like “www.example.de” into the browser expects a …
Java
Java Cryptography Architecture (JCA) - An Overview
The Java Cryptography Architecture (JCA) is an essential framework within the Java platform that provides developers with a flexible and …
Java
Cache Poisoning Attacks on Dependency Management Systems like Maven
Cache poisoning on Maven Caches is a specific attack that targets how Maven Caches manages packages and dependencies in a software …
Design Pattern
CWE-778: Lack of control over error reporting in Java
Learn how inadequate control over error reporting leads to security vulnerabilities and how to prevent them in Java applications. Safely …
Java
Code security through unit testing: The role of secure coding practices in the development cycle
Unit testing is an essential software development concept that improves code quality by ensuring that individual units or components of a …
Java
CWE-1123: Excessive Use of Self-Modifying Code for Java Developers
Self-modifying code refers to a type of code that alters its own instructions while it is executing. While this practice can offer certain …
Java
Securing Apache Maven: Understanding Cache-Related Risks
What is a Package Manager - Bird-Eye View A package manager is a tool or system in software development designed to simplify the process of …
Java
CWE-22: Best practices to use Java NIO
In today’s digital landscape, ensuring the security of your applications is paramount. One critical vulnerability developers must …
Java
CWE-22: Improper Limitation of a Pathname to a Restricted Directory
CWE-22, commonly called “Path Traversal,” is a vulnerability when an application fails to appropriately limit the paths users …