op-ed - Abhay Bhargav

Abhay Bhargav

Sign in Subscribe

op-ed

A collection of 5 posts

application security

3 Essential AppSec Skills for 2020 and beyond

Have been thinking about this one for a while now, and I thought I'll pen it down in long form. For me, the 3 Essential skills in AppSec, for 2020 and beyond are: Threat Modeling More organizations are looking to "shift left", especially by way of identifying vulnerabilities early and

CVE-2019-5736, runC and the Trickle down effect of Bad Advice

container Featured

CVE-2019-5736, runC and the Trickle down effect of Bad Advice

"Docker Containers are supposed to run as root", he said, authoritatively on a call. I started to doubt myself. "How can anything running as root, be a good thing?" I asked myself. But the gent giving us the piece of advice (nay, justification) was a senior security pro with a

Thoughts on Developer Security Training

Thoughts on Developer Security Training

I have had the good fortune to have trained thousands of developers on Application Security. Private organizations, conferences and even some non-profit groups have engaged us (we45) and my team to do this. Needless to say, this has been an extremely rewarding experience. I have had several clients say that