Download as PDF, PPTX
Uploaded byMarco Morana
PDF, PPTX2,840 views
Secure Code Reviews
This document provides a summary of Marco Morana's presentation on secure code reviews. The presentation covers what secure code reviews are and are not, why they are needed, methodologies for conducting them, common coding mistakes, and resources for further information. Secure code reviews help ensure compliance, security best practices are followed, and adequate security controls are in place. They should be integrated within the software development lifecycle and involve threat modeling. The methodology includes prioritizing code based on threats, categorizing vulnerabilities, and providing recommendations. Common mistakes include insecure configuration, data protection, authentication, and authorization issues.
![[OWASP Poland Day] OWASP for testing mobile applications](https://cdn.slidesharecdn.com/ss_thumbnails/pawelrzepaowaspformobileapps-171003211503-thumbnail.jpg?width=640&height=640&fit=bounds)
![[OPD 2019] Governance as a missing part of IT security architecture](https://cdn.slidesharecdn.com/ss_thumbnails/owaspday-final-191021172307-thumbnail.jpg?width=640&height=640&fit=bounds)
![[OPD 2019] Life after pentest](https://cdn.slidesharecdn.com/ss_thumbnails/presentationowaspday2019-191022184132-thumbnail.jpg?width=640&height=640&fit=bounds)
![[OPD 2019] Top 10 Security Facts of 2020](https://cdn.slidesharecdn.com/ss_thumbnails/radwaretop10securityfacts2020-pgee-oct19-191022061726-thumbnail.jpg?width=640&height=640&fit=bounds)
