Wie entsteht aus der harmlosen #HashMap ein Sicherheitsrisiko? Ganz einfach: mutable Schlüssel + veränderte Attribute = unsichtbare Einträge. Perfekter Nährboden für Angriffe!
@svenruppert zeigt Probleme & Strategien zur Vermeidung: https://javapro.io/de/wenn-hashcode-luegt-und-equals-hilflos-ist/
Mutable hashCode() in Java keys = recipe for disaster ☠️
#JavaSecurity #HashMap #Java #SecureCoding #Vaadin https://svenruppert.com/2025/06/06/if-hashcode-lies-and-equals-is-helpless/
#Java Cryptography Architecture (JCA) - An Overview
Provider-based crypto framework enables secure hashing, digital signatures, key management & more — all modular, extensible, and ready for real-world security needs. #JavaSecurity #Cryptography #JCA #SecureCoding
https://svenruppert.com/2025/04/03/java-cryptography-architecture-jca-an-overview/
🚀 New article: Boost your security skills with my latest guide on essential #application #security #testing!
Explore SCA, SAST, DAST, and PenTest to protect your projects from vulnerabilities.
#JavaSecurity #Cybersecurity #AppSec #SecurityTesting
https://ionutbalosin.com/2025/03/security-application-testing-for-java-developers
Java serialization was seen as magic, enabling easy data persistence without the portability issues of C. But today, it's considered 'the gift that keeps giving' for security vulnerabilities. Let's explore why & how to mitigate these risks #JavaSecurity https://debugagent.com/java-serialization-filtering-prevent-0-day-security-vulnerabilities
🔐 In the connected world, securing digital data has become a necessity. Dive into the world of symmetric encryption algorithms in #Java and learn how to keep your data safe. Check out the article here: https://buff.ly/491EJhh #CyberSecurity #JavaSecurity
✍️ Creating a secure Java application? This article by @snyksec covers everything you need to know about symmetric encryption algorithms in Java. Don't miss out! #JavaSecurity #Encryption 👉 https://buff.ly/45Itpnj
Avoid Reflective and Stored XSS attacks in your Java web app. Snyk Code can help identify vulnerabilities and pinpoint their exact location. #JavaSecurity #XSS #SnykCode https://t.co/03dKe1xBKK https://t.co/KpJxmUeGrE
Avoid Reflective and Stored XSS attacks in your Java web app. Snyk Code can help identify vulnerabilities and pinpoint their exact location. #JavaSecurity #XSS #SnykCode https://t.co/03dKe1xBKK https://t.co/2Elx044VvE
We open-source our CLI fuzzing solution for Java ☕
With CI Fuzz CLI, you can now deploy fuzz testing to uncover blind spots in your Java code.
The CLI tool can be incorporated into existing unit testing frameworks (e.g., JUnit) using three basic commands on your command line or IDE.
If you ever ran a unit test, you will be able to use CI Fuzz CLI.
Compatible with #Maven and #Gradle.
Check out the repo: https://github.com/CodeIntelligenceTesting/cifuzz
RT Foojay Podcast #7: Security in Java -- what do we need to know?
Security experts @spoole167 @BrianVerm @vixentael speak to @costlow on the latest @foojayio podcast!
hubs.ly/Q01sP__r0 #OpenJDK #DevSecOps #JavaSecurity
