Denis Makrushin
  • Blog
  • Research
Denis Makrushin
  • About
Denis Makrushin
  • Blog
  • Research
Denis Makrushin
  • About
Blog

“Web Application Bug Hunting” Workshop on #SINCON2020

by Denis Makrushin January 2, 2021
written by Denis Makrushin

For everyone who wants to start new year productively and begin the journey in #AppSec, I'll introduce “Web App Bug Hunting: Fundamentals and Learning Path” workshop on #SINCON. Thanks to @dariaski and @Emil0xA for the opportunity. Workshop details: https://t.co/sEpB73RvTh https://t.co/nIoKt2JmCv

— Denis Makrushin (@makrushind) January 2, 2021

For everyone who wants to start the new year productively and begin the journey in application security, I will introduce “Web Applications Bug Hunting: Fundamentals and Learning Path” workshop on SINCON.

Continue Reading
January 2, 2021 0 comment
FacebookTwitterPinterestLinkedinRedditTelegramEmail
Blog

Bug Hunting Hub: Telegram channel for Security Researchers

by Denis Makrushin November 14, 2020
written by Denis Makrushin

https://t.me/bhhub

Once bug hunting becomes a race of known misconfigurations and CVE detection, automation is required:

  1. monitor daily #BugBountyTips and CVEs;
  2. filter results with trendy potential;
  3. get alerts on time (13:37 UTC +0).

“Bug Hunting Hub” is a Telegram channel with my notes and bot notifications.

November 14, 2020 0 comment
FacebookTwitterPinterestLinkedinRedditTelegramEmail
Blog

Cybersecurity, profession and music production hobby in interview for “30+”

by Denis Makrushin November 5, 2020
written by Denis Makrushin

The interview prepared three years ago finally can be published because now the title complies with fact: 30+ (age).

Video with Russian dialogs about my profession, cybersecurity industry, and some intimate details about my music production hobby.

November 5, 2020 0 comment
FacebookTwitterPinterestLinkedinRedditTelegramEmail
Blog

Authentication and authorization in microservice-based systems

by Denis Makrushin October 27, 2020
written by Denis Makrushin

https://arxiv.org/abs/2009.02114

Authentication, Authorization, and Audit (AAA) in microservice-based architecture is a cornerstone for any scale applications. Multiple “best practices” by technology leaders, multiple recommendations by industry influencers. What is relevant to your product design and should be implemented?

We published the survey deliver the AAAnswers with the criteria for choosing the right one for your application security architecture: “Authentication and authorization in microservice-based systems: survey of architecture patterns.”

Objective: the aim of this study is to provide a helpful resource to application security architect and developers on existing architecture patterns to implement authentication and authorization in microservices-based systems.

October 27, 2020 0 comment
FacebookTwitterPinterestLinkedinRedditTelegramEmail
Blog

“Dev, Sec, Oops” principles (Infoshare 2020 Online talk)

by Denis Makrushin August 27, 2020
written by Denis Makrushin

You know that product security strategy, if properly integrated into DevOps process, can improve the product. But do you know, how product security can destroy the product?

Join my talk on Security Stage at the upcoming @infosharepl 2020 Online, where I will speak about “Dev, Sec, Oops” principles.

Let’s meet on 23-25 and 28-30 September 2020. Book a ticket using promo code “is20-dmakrushin” to get 10% off.  Register: https://infoshare.pl/is-register/

August 27, 2020 0 comment
FacebookTwitterPinterestLinkedinRedditTelegramEmail
Load More Posts
During the workshop, in real-time, we found a “subdomain takeover” issue, and @Infosec_City organizers rapidly fixe… https://t.co/GgSsIH4IyF

03-Jan-2021

Reply Retweet Favorite
For everyone who wants to start new year productively and begin the journey in #AppSec, I'll introduce “Web App Bug… https://t.co/yrGTVEeopt

02-Jan-2021

Reply Retweet Favorite
The great year with big challenges, the shortlist of results with long-term impact: 1. we built the team of talent… https://t.co/TCsg7XBPfR

01-Jan-2021

Reply Retweet Favorite
Life lessons in 2020 highlighted the weaknesses of business lifecycle. 3rd party dependencies checks in secure SDLC… https://t.co/KYwz7g4ods

21-Dec-2020

Reply Retweet Favorite
Based on the research paper, published in Web of Science indexed magazine ("Authentication and Authorization in Mic… https://t.co/oXbkmkKyu8

14-Dec-2020

Reply Retweet Favorite

Subscribe for Updates

Instagram

  • Twitter
  • Instagram
  • Linkedin
  • Email
  • Vk
  • Telegram

@ 2009. Denis Makrushin


Back To Top