Blog

OWASP #5 Broken Access Control

19 Oct 2021 | By Jason Lu

In the OWASP Top Ten list, the number 5 vulnerability is Broken Access Control. This is concerned with how web applications grant systems access to...

read the story

The Customer First Philosophy!

14 Sep 2021 | By Yanwen Lu

Yanwen Lu, Product Manager at Xcalibyte, shares her insights for how we have had to tailor our technical capabilities for very specific client requirements...

read the story

What is the Connection Between CERT & CWE?

Uncategorized

26 Aug 2021 | By Tan Rahman

Up to 90% of software security problems are caused by defects in source code. Coding standards are critical to eliminate vulnerabilities. Our latest blog post...

read the story

OWASP #4 XML EXTERNAL ENTITIES (XXE)

Uncategorized

9 Aug 2021 | By Jason Lu

The safest way to prevent XXE is to always disable External Entities completely. Disabling these also makes the parser secure against denial of services (DOS...

read the story

OWASP #3 Sensitive Data Exposure

9 Jun 2021 | By Xcalibyte

The next blog article in our OWASP Top Ten series is number 3, Sensitive Data. When your data is at rest, in transit or in...

read the story

Embedded Programming and IoT – Memory Management Criticality

18 May 2021 | By Tan Rahman & Jane Yang

In this blog article, we explore some of the pitfalls faced by developers when using lower-level compiled languages with the Internet of Things...

read the story

OWASP #2 – Broken Authentication

Uncategorized

6 May 2021 | By Jason Lu

Broken Authentication ranks No. 2 in the OWASP top ten list and despite being easily countered, is an all too often-seen problem in software...

read the story

OWASP #1 Injection

Uncategorized

2 Apr 2021 | By Jason Lu

The first article of our OWASP Top Ten series, injection...

read the story

Creating ‘Best in Class’ Tools for Static Code Analysis – Q&A with Sun Chan, CTO

7 Jan 2021 | By Sun Chan

In his latest Q&A session, Xcalibyte’s CTO, Sun Chan, shares some experiences from his admirable career, that all software developers will find insightful...

read the story

Q&A with Lai Jianxin on Static Code Analysis

15 Apr 2020 | By Lai Jianxin

Lai Jianxin is Xcalibyte’s Head of Research & Development for their static code analysis tool, Xcalscan. What are your responsibilities?My current job responsibility...

read the story

By using our site, you acknowledge that you have read and understand our Cookie Policy and Privacy Policy