Development and Security

Jemurai is a security company with deep experience in both application development and security.

AppSec Program

We help you build a security program that engages developers, leverages automation, and builds your leaders.

Security Automation

We implement security automation and tailor to your environment and your tools.


We teach leaders and developers about security in fun, hands on and language relevant training with online reinforcement.

Penetration Testing

We break apps to make them stronger.

Featured Projects

Here are some of our recent projects.

Latest Jemurai Blog Posts

Announcing Jemurai Security Automation

Posted By

Its been an exhilarating few weeks.  I had to remind myself to take a breath and blog today. What’s new-ish is that, we have a core team working on a new platform for security automation.  It extends the work we’ve done with Glue and other ideas taken from a great sample of client consulting engagements.  […]

Apr 13,2018No Comments

Impersonation Failures

Posted By

Several times in the last few weeks we have looked at applications that have significant issues with “impersonation” features.  What is impersonation? an act of pretending to be another person for the purpose of entertainment or fraud.  (From Google) In practice, impersonation is a feature that is commonly implemented to allow Customer Support to “see […]

Mar 28,2018No Comments

Dependency Management for Developers

Posted By

I recently got asked about best practices for dependency management by an old colleague.  In response, I wrote the following which I realized might be useful to a broader audience. So … things like github’s new notification on this have been automated via platforms like CodeClimate or via Jenkins internally at dev shops for a […]

Mar 20,2018No Comments