I saw it again in my posts today, and this time I can take the gloves off, so here is a hot take that I’m sure no one will enjoy.

In keeping with the CISA theme of the day, I thought that I would take some time to talk about DoS. For those out there who are new in the space a denial of service attack (DoS) is the process of making many requests (often more than the server can handle) in an attempt to overwhelm the server. Generally speaking this falls into the low effort, low payout corner of the cyber security space, and has been the favorite of many subclasses of threats on the internet (specifically the cyber activist). When a whole group of people (or services) do it is 'Distributed' denial of service (DDoS).

Believe me there is nothing more fun than working with logging, but knowing what make good logs can go a long way into improving the security of your application

In this post we talk about opening up the conversation of DevSec and what we can do from the developer side to think about security and the tooling that we utilize to build software.