The SANS Software Security Community provides a variety of resources. Interact with your fellow professionals and appsec experts on the SANS AppSec Blog or discover solutions to appsec related issues with a multitude of webcasts.


How to Secure App Pipelines in AWS
By Dave Shackleford on Oct 16, 2019

JumpStart Guide to Application Security in Amazon Web Services
By Nathan Getty on Sep 27, 2019

Adapting AppSec to a DevOps World
By Rebecca Deck on Jul 16, 2019

View More

How To Guide

The SANS Developer How To Guide provides developers with simple code examples that quickly show how to prevent common security vulnerabilities.

Read More


NoSQL Doesn’t Make you NoVulnerable
By Johannes Ullrich on Apr 21, 2017

Mobile App Security Trends and Techniques
By Gregory Leonard on Apr 7, 2017

Struts-Shock: Current Attacks against Struts2 and How to Defend Against Them
By Johannes Ullrich and Jonathan Mandell on Apr 6, 2017

View More


By Jason Lam and Dr. Johannes Ullrich

AJAX and Web 2.0 Security
By Jason Lam and Dr. Johannes Ullrich

The Value of Code Scanning
By Dinis Cruz