PinnedAndrew Scott3 New Malicious Packages Found on PyPIHighly Used Packages Identified Through Text AnalysisDec 12, 20217Dec 12, 20217
PinnedAndrew ScottPreventing Dependency Confusion Attacks in PythonBefore we get into how to protect python applications from dependency confusion attacks, we’ll define this new attack vector, give a bit…Apr 7, 2021Apr 7, 2021
Andrew ScottOchrona 2.0.0 ReleasedOchrona, the Python security tool has some major updates, including SAST checksMar 4, 2022Mar 4, 2022
Zach MarksWhat is Open-Source Dependency Management and Why Should I Care?Open-source software usage is exploding, and with that comes the need for proactive dependency management throughout the SDLC.Apr 5, 2021Apr 5, 2021
Andrew ScottSecurity Pitfalls in the Python Standard LibraryKeep your code safe by avoiding these 6 pitfallsMar 21, 2021Mar 21, 2021
Andrew ScottPython Pickle is Notoriously InsecurePreventing Pwnage against Python PickleJan 4, 20211Jan 4, 20211
Andrew ScottPython DoS Prevention: The ReDOS AttackWhat is a “ReDoS” Attack, and how can you make sure your code is safe?Nov 27, 2020Nov 27, 2020
Andrew ScottArbitrary Code Execution During Python Package InstallationWhy Typosquatting is a Threat to Python Developers and their CompaniesNov 17, 2020Nov 17, 2020
Andrew ScottHow Being Hacked Launched my Career in CybersecurityWhat’s your Infosec origin story?Aug 10, 20201Aug 10, 20201