Posts by author: Dr. Johannes Dahse

Flyeralarm Secures Web Shop with RIPS

8 min read 14 May 2019 by Johannes Dahse
FLYERALARM, a leading german e-commerce company, expands its strong security layer with RIPS to secure its web shop and customer data. Find out how FLYERALARM saves multiple hours each day with automated security testing - a success story.

5 Best Practices for your SAST Evaluation

20 min read 26 Feb 2019 by Johannes Dahse
Choosing the right solution for automated security testing is hard. A good way is to run a proof of concept (POC) of different vendors so you can verify marketing claims before adding another software to your stack. Our best practices can help to prepare an efficient and thorough evaluation so you can unmask snake oil from cutting-edge technology and make the best choice.

PHP Security Advent Calendar 2018

3 min read 27 Nov 2018 by Johannes Dahse
The holiday season is coming up again and it’s time for some security fun. For the third time in a row, we are proud to announce our PHP security advent calendar. This year, we will analyze 24 exciting security bugs that we detected in the most widespread WordPress plugins.

What is Phar Deserialization

9 min read 14 Aug 2018 by Johannes Dahse
Last week a new exploitation technique for PHP applications was announced at the BlackHat USA conference. Find out everything you need to know in this blog post.

Comparison of Application Security Testing Approaches

15 min read 31 Jul 2018 by Johannes Dahse
Web applications can be tested manually or automated, as a blackbox or a whitebox, with static or dynamic analysis. In this post we compare the advantages and disadvantages of a variety of approaches and solutions.