Tanya Janca | SheHacksPurple
@shehackspurple.bsky.social
Secure Code Trainer - Best-selling author of Alice and Bob Learn Secure Coding & Alice and Bob Learn Application Security. #AppSec she/her
https://shehackspurple.ca 🌻
https://shehackspurple.ca 🌻
Reposted by Tanya Janca | SheHacksPurple
I still need at least one more person to be a caller on my call-in-radio style podcast to ask a question about appsec and secure development practices on Friday this week. @shehackspurple.bsky.social will join me to answer caller questions!
November 10, 2025 at 7:04 PM
I still need at least one more person to be a caller on my call-in-radio style podcast to ask a question about appsec and secure development practices on Friday this week. @shehackspurple.bsky.social will join me to answer caller questions!
I was on Darknet Diaries Ep. 165! Learn about dumb buildings with malware, how going to the dentist can get you in hot water, and that sharing breach information can you get buy in with software developers.
YouTube: https://twp.ai/9PYGmd
Or any podcast platform
YouTube: https://twp.ai/9PYGmd
Or any podcast platform
November 10, 2025 at 7:22 PM
I was on Darknet Diaries Ep. 165! Learn about dumb buildings with malware, how going to the dentist can get you in hot water, and that sharing breach information can you get buy in with software developers.
YouTube: https://twp.ai/9PYGmd
Or any podcast platform
YouTube: https://twp.ai/9PYGmd
Or any podcast platform
It’s #CyberMentoringMonday!!!! Are you looking for a professional mentor or to learn more about InfoSec? Are you experienced and willing to ‘give back’? Use this thread and hashtag to connect!
November 10, 2025 at 3:00 PM
It’s #CyberMentoringMonday!!!! Are you looking for a professional mentor or to learn more about InfoSec? Are you experienced and willing to ‘give back’? Use this thread and hashtag to connect!
I'm hosting a free webinar, 'Metrics, Models & Mindsets: The Future of Application Security!', with Spyros Gasteratos and Aram Hovsepyan on Nov 12 · 8:30 AM PST. Wanna come?
https://twp.ai/9PWkQ5
https://twp.ai/9PWkQ5
November 9, 2025 at 5:26 PM
I'm hosting a free webinar, 'Metrics, Models & Mindsets: The Future of Application Security!', with Spyros Gasteratos and Aram Hovsepyan on Nov 12 · 8:30 AM PST. Wanna come?
https://twp.ai/9PWkQ5
https://twp.ai/9PWkQ5
My talk from @defcon.bsky.social is finally out! Watch 'Secure Code Is Critical Infrastructure: Hacking Policy for Public Good' here:
https://twp.ai/9PWUSj
If you like it, please give it a thumbs up. 👍
https://twp.ai/9PWUSj
If you like it, please give it a thumbs up. 👍
November 8, 2025 at 10:00 PM
My talk from @defcon.bsky.social is finally out! Watch 'Secure Code Is Critical Infrastructure: Hacking Policy for Public Good' here:
https://twp.ai/9PWUSj
If you like it, please give it a thumbs up. 👍
https://twp.ai/9PWUSj
If you like it, please give it a thumbs up. 👍
We, as an industry, need to start giving very specific and clear advice, if we want to have better outcomes. No more high level, vague, and ambiguous advice please.
youtu.be/XXtEpRN3ePc?...
#SpecificSecurity #BeSpecific #appsec #cybersecurity
youtu.be/XXtEpRN3ePc?...
#SpecificSecurity #BeSpecific #appsec #cybersecurity
November 8, 2025 at 9:32 PM
We, as an industry, need to start giving very specific and clear advice, if we want to have better outcomes. No more high level, vague, and ambiguous advice please.
youtu.be/XXtEpRN3ePc?...
#SpecificSecurity #BeSpecific #appsec #cybersecurity
youtu.be/XXtEpRN3ePc?...
#SpecificSecurity #BeSpecific #appsec #cybersecurity
Reposted by Tanya Janca | SheHacksPurple
Application Security / #AppSec / #appsecurity is a key area in modern #CyberSecurity.
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
November 8, 2025 at 4:51 PM
Application Security / #AppSec / #appsecurity is a key area in modern #CyberSecurity.
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
Particularly with so many non-tech folk now building Web apps using #AI.
If you're building apps I highly recommend reading the books by Tanya Janca @shehackspurple.bsky.social
They have helped me a lot!
I'm a big fan of https://twp.ai/9PY1su, but I don't love receiving breach notifications when I'm IN them! 😥
https://twp.ai/4ismgq
https://twp.ai/4ismgq
November 8, 2025 at 3:52 PM
I'm a big fan of https://twp.ai/9PY1su, but I don't love receiving breach notifications when I'm IN them! 😥
https://twp.ai/4ismgq
https://twp.ai/4ismgq
Want to learn the absolute basics of application security? Check out this helpful YouTube playlist! #appsec
youtube.com
Introduction to Application Security
twp.ai
November 7, 2025 at 10:13 PM
Want to learn the absolute basics of application security? Check out this helpful YouTube playlist! #appsec
Dustin Lehr is helping us secure our apps, in a more friendly way!
@katilyst at #owasp #globalappsec
@katilyst at #owasp #globalappsec
November 7, 2025 at 6:49 PM
Dustin Lehr is helping us secure our apps, in a more friendly way!
@katilyst at #owasp #globalappsec
@katilyst at #owasp #globalappsec
It serves us all!
November 7, 2025 at 4:34 PM
It serves us all!
Adam Shostack is kicking off day 2 of #owaspglobalappsec with a conversation on the limits of risk. 🥳
November 7, 2025 at 2:08 PM
Adam Shostack is kicking off day 2 of #owaspglobalappsec with a conversation on the limits of risk. 🥳
"Malicious packages in npm evade dependency detection through invisible URL links: Report" Article by Howard Solomon, with quotes from me.
https://twp.ai/9PWt48
https://twp.ai/9PWt48
November 6, 2025 at 9:31 PM
"Malicious packages in npm evade dependency detection through invisible URL links: Report" Article by Howard Solomon, with quotes from me.
https://twp.ai/9PWt48
https://twp.ai/9PWt48
I'm doing a book signing (free books!) at the Smithy booth at #owaspglobalappsec, at 3:00 pm this afternoon! Come join me in the vendor area for books, stickers and conversations!
November 6, 2025 at 6:10 PM
I'm doing a book signing (free books!) at the Smithy booth at #owaspglobalappsec, at 3:00 pm this afternoon! Come join me in the vendor area for books, stickers and conversations!
What makes a “security champion” successful in a dev team? What makes them good at it? What makes a bad one? How can you tell if it's going well or not? #talkappsectome
November 6, 2025 at 4:25 PM
What makes a “security champion” successful in a dev team? What makes them good at it? What makes a bad one? How can you tell if it's going well or not? #talkappsectome
Daniel Miessler is kicking off #owaspglobalappsec with a talk about where everyone's career is going with the changes from AI. @DanielMiessler @owasp
November 6, 2025 at 2:28 PM
Daniel Miessler is kicking off #owaspglobalappsec with a talk about where everyone's career is going with the changes from AI. @DanielMiessler @owasp
Come see my talk with Neil Smithline about the new OWASP Top Ten, at #owaspglobalappsec, at 10:15 this morning!
November 6, 2025 at 2:07 PM
Come see my talk with Neil Smithline about the new OWASP Top Ten, at #owaspglobalappsec, at 10:15 this morning!
Reposted by Tanya Janca | SheHacksPurple
Secure coding in #JavaScript, my latest blog on @stackoverflow.blog.web.brid.gy. JavaScript is the front-end of the entire internet. Because JavaScript is so prolific, it’s a prime target for attackers.
https://twp.ai/9PWbls
https://twp.ai/9PWbls
November 5, 2025 at 6:28 PM
Secure coding in #JavaScript, my latest blog on @stackoverflow.blog.web.brid.gy. JavaScript is the front-end of the entire internet. Because JavaScript is so prolific, it’s a prime target for attackers.
https://twp.ai/9PWbls
https://twp.ai/9PWbls
Reposted by Tanya Janca | SheHacksPurple
We're recording another episode next week! @shehackspurple.bsky.social joins the show to answer questions about application security and secure software development practices. Visit the podcast page for more information and to sign up to be a caller!
www.focivity.com/pod...
www.focivity.com/pod...
November 4, 2025 at 8:46 PM
We're recording another episode next week! @shehackspurple.bsky.social joins the show to answer questions about application security and secure software development practices. Visit the podcast page for more information and to sign up to be a caller!
www.focivity.com/pod...
www.focivity.com/pod...
Reposted by Tanya Janca | SheHacksPurple
Good authors, from information security to brilliant fiction, like @shehackspurple.bsky.social and @beritmiriam.bsky.social ask us to support their writings by weighing in on book-selling platforms.
So DO support them, dear followers 🥰
So DO support them, dear followers 🥰
May I ask you a a favour? If you have bought one of my books, and you liked it, would you consider submitting a review on Amazon? If you have feedback for me, please DM me, I am always looking to improve.
https://twp.ai/9PVjFi
https://twp.ai/9PVjFi
November 4, 2025 at 10:17 PM
Good authors, from information security to brilliant fiction, like @shehackspurple.bsky.social and @beritmiriam.bsky.social ask us to support their writings by weighing in on book-selling platforms.
So DO support them, dear followers 🥰
So DO support them, dear followers 🥰
November 4, 2025 at 10:13 PM
165: Tanya
open.spotify.com
November 4, 2025 at 6:47 PM
November 4, 2025 at 1:35 AM
It’s #CyberMentoringMonday!!!! Are you looking for a professional mentor or to learn more about InfoSec? Are you experienced and willing to ‘give back’? Use this thread and hashtag to connect!
November 3, 2025 at 3:00 PM
It’s #CyberMentoringMonday!!!! Are you looking for a professional mentor or to learn more about InfoSec? Are you experienced and willing to ‘give back’? Use this thread and hashtag to connect!