a blog covering the intersection of security and development

The Redpoint Security mission has always included helping security professionals and developers navigate the infosec world.

Serving that purpose, our blog points you to a few relevant resources as well as lessons learned from our own experiences working in the field.

Join on-going conversations on these topics by adding this blog to your bookmarks, following us on social media, & checking into Seth’s weekly conversations on his Absolute AppSec podcast.

AppSec Travels: Part 2

Access Control Bypass

AppSec Travels: Part 1

Token Caching

Welcome to Redpoint’s Blog

Redpoint Security

Training Devs for a new OWASP Top Ten (2021)

What we learned from adapting our Application Security 101 course

Redpoint and Code

Why code security by coders? The secret to comprehensive security is knowing how an attacker thinks and how a developer creates.

Addressing Ransomware in Organizations and Application Security

[For an attacker], where there’s an absence from technical protection, there’s always the presence of human error. -KEN JOHNSON

A Client-Side Solve: Browser Sanitization APIs

Could Browser Sanitization APIs mean a new era of client-side security?