The SANS Software Security Community provides a variety of resources. Interact with your fellow professionals and appsec experts on the SANS AppSec Blog or discover solutions to appsec related issues with a multitude of webcasts.

How To Guide

The SANS Developer How To Guide provides developers with simple code examples that quickly show how to prevent common security vulnerabilities.

Read More


HTTP/2 & Websockets Are Gonna Change the Pen Test World. Are You Ready?
By Justin Searle and Adrien de Beaupre on Apr 13, 2016

Benchmarking AppSec: A Metrics Pyramid
By SANS Instructor Jim Bird and Tim Jarrett on Mar 15, 2016

A DevSecOps Playbook
By Dave Shackleford and Amrit Williams on Mar 8, 2016

View More


By Jason Lam and Dr. Johannes Ullrich

AJAX and Web 2.0 Security
By Jason Lam and Dr. Johannes Ullrich

The Value of Code Scanning
By Dinis Cruz