The Latest Secure Coding

Secure coding is very important in software development to ensure code security is high using techniques such as static analysis, code auditing and dynamic analysis to ensure safe coding practices are followed.

Secure Coding

What Tools can be used for Secure Coding?

There are a variety of tools to ensure code safety, mostly based on source code auditing and static analysis.

The options available really depend on the language being used with some tools focusing on many languages such as Yasca – Multi-Language Static Analysis Toolset or specialist tools focusing on a single language like Brakeman – Static Analysis Rails Security Scanner.

Find the Best Secure Coding from 2017 here:


pyrasite - Inject Code Into Running Python Processes

pyrasite – Inject Code Into Running Python Processes

pyrasite is a Python-based toolkit to inject code into running Python processes. pyrasite works with Python 2.4 and newer. Injection works between versions as well, so you can run Pyrasite under Python 3 and inject into 2, and vice versa. Usage

You can download pyrasite here: pyrasite-2.0.zip Or read more here.

Topic: Exploits/Vulnerabilities, Hacking Tools, Secure Coding
Github Dorks - Github Security Scanning Tool

Github Dorks – Github Security Scanning Tool

Github search is quite a powerful and useful feature and can be used to search for sensitive data in repositories, this Github security scanning tool comes with a collection of Github dorks that can reveal sensitive personal and/or other proprietary organisational information such as private keys, credentials, authentication tokens and so on. github-dork.py is a […]

Topic: Hacking Tools, Privacy, Secure Coding
Powerfuzzer - Automated Customizable Web Fuzzer

Powerfuzzer – Automated Customizable Web Fuzzer

Powerfuzzer is a highly automated and fully customizable web fuzzer (HTTP protocol based application fuzzer) based on many other Open Source fuzzers available and information gathered from numerous security resources and websites. It was designed to be user-friendly, modern, effective and to work consistently. It is also designed and coded to be modular and extendable, […]

Topic: Exploits/Vulnerabilities, Hacking Tools, Secure Coding
Wycheproof - Test Crypto Libraries Against Known Attacks

Wycheproof – Test Crypto Libraries Against Known Attacks

Project Wycheproof is a tool to test crypto libraries against known attacks. It is developed and maintained by members of Google Security Team, but it is not an official Google product. At Google, they rely on many third party cryptographic software libraries. Unfortunately, in cryptography, subtle mistakes can have catastrophic consequences, and they found that […]

Topic: Countermeasures, Cryptography, Secure Coding
PowerShellArsenal - PowerShell For Reverse Engineering

PowerShellArsenal – PowerShell For Reverse Engineering

PowerShellArsenal is basically PowerShell for reverse engineering in a module format. The module can be used to disassemble managed and unmanaged code, perform .NET malware analysis, analyse/scrape memory, parse file formats and memory structures, obtain internal system information, etc. PowerShellArsenal is comprised of the following tools: Disassembly – Disassemble native and managed code. MalwareAnalysis – […]

Topic: Forensics, Secure Coding