Hey everyone, Jake here. I'm an Application Security Consultant / Vulnerability Researcher based in Canberra, Australia.
The purpose of this space is threefold:
1) To document any research I'm undertaking.
2) To promote secure development practices and (hopefully) educate both security professionals and software developers, alike.
3) To demonstrate what happens when secure coding principles aren't adhered to.
Hey nerd, are you the best person to be educating us?
Definitely not. But as my over-the-hill ex-manager once said "I know enough to be dangerous".
What else are you studying these days?
- .NET Core MVC Application Development.
- Golang.
- x86 Assembly
Cool story bro, what do I get out of this?
My primary aim is to eliminate the "DevSec Disconnect" between the developer and the security professional.
I hope to instil digestible, secure-by-design coding principles for all levels. From the junior developer with an interest in security, to the 10x engineer who has never written a vulnerable piece of code in their life (Ha!).
For my security folk, hopefully you pick up a few tips or tricks to use in your next engagement.