Author

Name Surname

4 articles published

Building a 34-Rule WAF: From 15 Signatures to Full OWASP Coverage

How we expanded our web application firewall from 15 basic signatures to 34 detection rules across 9 OWASP categories, with multi-layer URL decoding, anomaly scoring, IP reputation tracking, and honeypot traps that instantly ban scanners.

9 days ago8 min

Product Updates

Cross-Platform Biometric Auth: Migrating WebAuthn RP ID Across Subdomains

How we migrated our WebAuthn Relying Party ID from control.boottify.com to the apex domain boottify.com, enabling biometric credentials to work across all subdomains with a dual RP ID verification strategy.

12 days ago7 min

151 Loading States and 12 Error Boundaries: Our Codebase Quality Audit

Featured

Product Updates

151 Loading States and 12 Error Boundaries: Our Codebase Quality Audit

A comprehensive quality audit of our 275K-line codebase: generating loading skeletons for every page, adding error boundaries across route groups, migrating 3,796 hardcoded colors to CSS variables, and replacing console.log with structured logging.

15 days ago9 min

Product Updates

5-Tier Rate Limiting: Protecting 23 Auth Endpoints from Brute Force

How we implemented a 5-tier sliding window rate limiter across all 23 authentication endpoints, with IP-based tracking, standard response headers, and a custom ApiError.tooManyRequests() factory.

21 days ago6 min