Last month, one of my previous colleague asked me what should he check for security if he was going to develop a web application. Initially, i thought it was quite obvious and could be easily found the resources from the internet. Yes, i was correct, i found that OWASP have compiled a quite comprehensive checklist [1]. However, what made thing complicated was how did my previous colleague did the jobs with little resources!!! Though there are lot of vulnerabilities scanners and associated security tools [2] to help out, it is still far beyond the knowledges and resources he needs to do his job. This again convinces me that there is a need to have a scalable scanning framework like google cloud security scanner [3] that works for everyone on the internet.
Reference:
[2] Security Tools
Comments
Post a Comment