30 Oct 2014

Project Localization Without the Pain

I run a few open source projects, one of which is Snipe-IT, a free IT asset management system.¬†While the app is in English by default (since that’s my most fluent language), giving my end users the ability to use the app in their own language has always been important to

01 Aug 2013

Failing Well: Managing Risk in Web Applications

When I talk about risk as it relates to web applications, people usually assume I’m talking about hardening applications from hackers, spammers and other ne’er-do-wells. While malicious attacks are absolutely a non-trivial part of risk management, there’s a lot more to it that’s just as important.

17 Feb 2012

My Favorite Lorem Ipsums

I’ve been under the weather for a few days, but I’m also overdue for a post. Rather than one of my usual tirades, I’m treating you to something light with almost no nerdrage whatsoever. But don’t worry. Once I’m feeling better, I’ll be back to my old ragey self.

14 Oct 2010

Firefox Addons for Penetration/XSS Testing

2010 was supposed to be the year of the Tiger, but it’s felt more like the year of Pwny so far. This article covers some Firefox add-ons that help you test your own apps, whether you’re working with a penetration tester, or by default, you are the penetration tester.

06 Feb 2010

Sexy, Cheap and Easy: Not Your Mom, Your Wireframes

I’m a planning whore. It’s true. I’m one of those weirdos that really enjoys creating data flows, use cases, wireframes, and functional requirements documents. My bizarre predalictions aside, wireframes are a critical part of planning any website or web based application.

05 Dec 2009

Microsoft Web Developer’s Summit 2009

I had the opportunity this week to go out to Redmond, Washington to attend the Microsoft Web Developer’s Summit at the MS headquarters. For this summit, about 25 leaders in the PHP (and PHP project) community were invited out to sit down with members of the MS product development teams