Resources

Links

The SANS Software Security Community provides a variety of resources. Interact with your fellow professionals and appsec experts on the SANS AppSec Blog or discover solutions to appsec related issues with a multitude of webcasts.

• Top 25 software errors
• Application Security Procurement Language
• Secure Programming Tips
• Newletters
• SDL Pro Network

Whitepapers

Top 5 Considerations for Multicloud Security
By Brandon Evans on Apr 22, 2020

How to Secure App Pipelines in AWS
By Dave Shackleford on Oct 16, 2019

JumpStart Guide to Application Security in Amazon Web Services
By Nathan Getty on Sep 27, 2019

View More

How To Guide

The SANS Developer How To Guide provides developers with simple code examples that quickly show how to prevent common security vulnerabilities.

• Cross-Site Request Forgery (CSRF)
• How To Fix SQL Injection
• Cross-Site Scripting (XSS)

Read More

Blog Posts

Exploring the DevSecOps Toolchain
Oct 14, 2018

Your Secure DevOps Questions Answered
Sep 13, 2018

Continuous Opportunity - DevOps and Security
Aug 23, 2017

View More

Webcasts

Hacking Jenkins
By Ross Young on Apr 20, 2020

What To Do When Moving to The Cloud
By Kenneth Hartman, Kyle Dickinson, Ryan Nicholson on Mar 30, 2020

7 Techniques for Ramping Your DevSecOps Program Quickly
By Jake King on Mar 26, 2020

View More

Videos

Non-repudiation
By Jason Lam and Dr. Johannes Ullrich

AJAX and Web 2.0 Security
By Jason Lam and Dr. Johannes Ullrich

The Value of Code Scanning
By Dinis Cruz