Prince of the Honeycomb - code security
18-Nov-2019 2822
This story begins with a request for an internal penetration test in November of last year: Countercept[1] (F-Secure’s managed Threat Hunting platform) implemented a few new features in Honeycomb (its client-facing Ruby on Rails web application). As it’s good practice, the development team asked for a whitebox penetration test of the newly implemented functionality before releasing it to customers, particularly focused on reviewing some changes to the authentication mechanism.
Prince of the Honeycomb - code security #ruby #rubydeveloper #rubyonrails #Prince #Honeycomb #security #code #security https://rubyonrails.ba/link/prince-of-the-honeycomb-code-security