June 2023

Exploring the Controversy: The Pros and Cons of Environment Variables - PyCon Italia

Jun 30, 2023 By Mackenzie Jackson In GitGuardian

Using environment variables to store secrets has long been considered a good practice. But in this article, we will explore different opinions as to why using env vars might be either good or bad for security.

Read Post

GitGuardian

Read more about Exploring the Controversy: The Pros and Cons of Environment Variables - PyCon Italia

The Art of Protecting Secrets: Eight Essential Concepts for SecOps Practitioners

Jun 29, 2023 By Thomas Segura In GitGuardian

Secrets management is an art, and mastering it requires a deep understanding of security protocols, meticulous attention to detail, and a proactive approach to staying ahead of threats. In this blog, we present you with eight essential concepts to enhance your credential management strategy.

Read Post

GitGuardian

Read more about The Art of Protecting Secrets: Eight Essential Concepts for SecOps Practitioners

Platform Engineering: Building Your Developer Portal with Backstage (Pt 1)

Jun 23, 2023 By Guest Expert In GitGuardian

Build a developer portal from scratch with Backstage, an open platform. In this tutorial, learn how to create a secure-by-default software catalog for bootstrapping GitHub projects.

Read Post

GitGuardian

Read more about Platform Engineering: Building Your Developer Portal with Backstage (Pt 1)

Is secrets management a solved problem? Panel discussion

Jun 20, 2023 By GitGuardian In GitGuardian

This video a panel of experts discuss why secrets sprawl is still such a difficult problem despite having the tools and technology that should make it a solved problem. This discussion is from a longer webinar around secrets management with: Mackenzie Jackson from GitGuardian James Governor, Co-founder & Analyst at RedMonk Andrei Predoiu, DevOps Engineer at Bestseller Mike Carey, Senior Product Manager at 1Password.

View Video

GitGuardian

Read more about Is secrets management a solved problem? Panel discussion

Company News: Key hires for the executive team and a selection in the French Tech 2030 program.

Jun 20, 2023 By Carole Winqwist In GitGuardian

GitGuardian has made strategic executive hires and been selected for the French Tech 2030 program, positioning the company for growth and advancement in cybersecurity and code security solutions.

Read Post

GitGuardian

Read more about Company News: Key hires for the executive team and a selection in the French Tech 2030 program.

How Your Secrets Management Maturity Can Impact Your DevOps Research and Assessment Metrics

Jun 19, 2023 By Dwayne McDaniel In GitGuardian

Learn how your secrets management can affect your DevOps performance, measured by DORA metrics, as well as increase your risk as an organization.

Read Post

GitGuardian

Read more about How Your Secrets Management Maturity Can Impact Your DevOps Research and Assessment Metrics

GitHub's Push Protection: Enhancing Open-Source Security with Limitations to Consider

Jun 16, 2023 By Thomas Segura In GitGuardian

GitHub's Push Protection is now free for all public repositories, a significant milestone for open-source security! Find out the key points you need to keep in mind before using it to safeguard your code repositories.

Read Post

GitGuardian

Read more about GitHub's Push Protection: Enhancing Open-Source Security with Limitations to Consider

How to Secure Your CI/CD Pipelines with GitGuardian Honeytokens

Jun 14, 2023 By Guest Expert In GitGuardian

Discover how honeytokens, digital decoys designed to detect unauthorized access, can strengthen the security of your CI/CD pipelines. In this guide, we offer step-by-step instructions for integrating them into popular pipelines like Jenkins, GitLab, and AWS CodePipeline.

Read Post

GitGuardian

Read more about How to Secure Your CI/CD Pipelines with GitGuardian Honeytokens

Techno Security & Digital Forensics Conference East 2023 - A community defending against ever evolving threats

Jun 12, 2023 By Dwayne McDaniel In GitGuardian

For the 23rd year, Techno Security & Digital Forensics Conference East brought practitioners from law enforcement, academia, and security industry pros to learn from each over.

Read Post

GitGuardian

Read more about Techno Security & Digital Forensics Conference East 2023 - A community defending against ever evolving threats

How do you manage secrets (Credentials) in an organisation - Expert panel

Jun 12, 2023 By GitGuardian In GitGuardian

In this video a panel of experts discuss how to create an effective secrets management program and what are the challenges large organisations face when trying to combat security issues like secrets sprawl. The discussion is with between: Mackenzie Jackson from GitGuardian James Governor, Co-founder & Analyst at RedMonk Andrei Predoiu, DevOps Engineer at Bestseller Mike Carey, Senior Product Manager at 1Password.

View Video

GitGuardian

Read more about How do you manage secrets (Credentials) in an organisation - Expert panel

Verizon 2023 DBIR: Credential Leaks Continue To Be A Major Issue

Jun 9, 2023 By Dwayne McDaniel In GitGuardian

Verizon's 2023 DBIR shows trends for incidents and breaches from the last year. Read our recap to see how credential leakage is helping malicious actors gain entry.

Read Post

GitGuardian

Read more about Verizon 2023 DBIR: Credential Leaks Continue To Be A Major Issue

Building resilient and secure systems - Lessons from Devoxx Poland

Jun 7, 2023 By Mackenzie Jackson In GitGuardian

Devoxx Poland is a developer first confrence that invites software innovators from around the world present latest trends in the industry, here are some of the key takeaways to build secure and resilient systems.

Read Post

GitGuardian

Read more about Building resilient and secure systems - Lessons from Devoxx Poland

External Attack Surface Management. What are you missing out on?

Jun 5, 2023 By Soujanya Ain In GitGuardian

Discover the importance of including public GitHub monitoring in your external attack surface management strategy to mitigate the risk of sensitive information exposure. Learn the steps to protect your organization from potential breaches in this blog post.

Read Post

GitGuardian

Read more about External Attack Surface Management. What are you missing out on?

What are GitHooks? Explained in 5 minutes

Jun 5, 2023 By GitGuardian In GitGuardian

This video gives a quick insight into exactly what GitHooks are and where they run, it also shows you how to utilise the 'out of the box' hooks available in the standard git template.

View Video

GitGuardian

Read more about What are GitHooks? Explained in 5 minutes

Create and manage severity rules. Supercharge your remediation.

Jun 2, 2023 By Ziad Ghalleb In GitGuardian

Tweak our default severity rules or create new ones and align GitGuardian’s automated severity scoring engine with your organization’s security priorities!

Read Post

GitGuardian

Read more about Create and manage severity rules. Supercharge your remediation.

Protect Your Private Packages With GitGuardian Honeytoken

Jun 2, 2023 By GitGuardian In GitGuardian

GitGuardian Honeytoken provides a quick and easy way to add leakage and intrusion detection to your projects. When building your packages, just create a new Honeytoken from the GitGuardian dashboard and insert it into the project where you prefer. Then build and share that package with the team with confidence.

View Video

GitGuardian

Read more about Protect Your Private Packages With GitGuardian Honeytoken

Keep Your Private Code Packages Private With GitGuardian Honeytoken

Jun 2, 2023 By GitGuardian In GitGuardian

View Video

GitGuardian

Read more about Keep Your Private Code Packages Private With GitGuardian Honeytoken

Protect Your Private Repos From Code Leaks With GitGuardian Honeytoken

Jun 2, 2023 By GitGuardian In GitGuardian

Your private code should stay private! If it leaks for any reason, you need to know about it ASAP. GitGuardian Honeytoken is a quick and easy way to add leakage and intrusion detection to your repositories.

View Video

GitGuardian

Read more about Protect Your Private Repos From Code Leaks With GitGuardian Honeytoken

Get Incident Alerts Where You Want Them With GitGuardian Custom Webhooks

Jun 2, 2023 By GitGuardian In GitGuardian

Stay in the know with event-driven notifications! When creating a custom webhook, you can now subscribe to one or more types of events from incidents, occurrences, or notes (14 in total) and forward alerts to your favorite tools outside GitGuardian!

View Video

GitGuardian

Read more about Get Incident Alerts Where You Want Them With GitGuardian Custom Webhooks

IaC Scanning with ggshield - GitGuardian CLI

Jun 2, 2023 By GitGuardian In GitGuardian

How are you scanning for configuration issues in your Terraform projects? Using ggshield, the GitGuardian CLI, developers can quickly find and fix over 70 common vulnerabilities in their infrastructure as code projects.

View Video

GitGuardian

Read more about IaC Scanning with ggshield - GitGuardian CLI

Customize Your GitGuardian Remediation Workflow

Jun 2, 2023 By GitGuardian In GitGuardian

Have you ever wished you could customize the remediation workflow in your GitGuardian workspace? Now, you can! As a workspace Manager, you can manage the remediation workflow in the Secrets detection section of your settings and add up to 20 steps. You can also switch between the default GitGuardian remediation workflow and your custom remediation workflow.

View Video

GitGuardian

Read more about Customize Your GitGuardian Remediation Workflow

Automating incident Remediation with GitGuardian Playbooks

Jun 2, 2023 By GitGuardian In GitGuardian

GitGuardian can help automate your incident remediation process through our playbooks! The auto-healing playbook automates sharing the incident with the developer involved. Whenever a new incident is detected, GitGuardian automatically turns on the sharing option of the incident and, in most cases, sends an email with the unique link to the developer involved.

View Video

GitGuardian

Read more about Automating incident Remediation with GitGuardian Playbooks

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

June 2023

Exploring the Controversy: The Pros and Cons of Environment Variables - PyCon Italia

The Art of Protecting Secrets: Eight Essential Concepts for SecOps Practitioners

Platform Engineering: Building Your Developer Portal with Backstage (Pt 1)

Is secrets management a solved problem? Panel discussion

Company News: Key hires for the executive team and a selection in the French Tech 2030 program.

How Your Secrets Management Maturity Can Impact Your DevOps Research and Assessment Metrics

GitHub's Push Protection: Enhancing Open-Source Security with Limitations to Consider

How to Secure Your CI/CD Pipelines with GitGuardian Honeytokens

Techno Security & Digital Forensics Conference East 2023 - A community defending against ever evolving threats

How do you manage secrets (Credentials) in an organisation - Expert panel

Verizon 2023 DBIR: Credential Leaks Continue To Be A Major Issue

Building resilient and secure systems - Lessons from Devoxx Poland

External Attack Surface Management. What are you missing out on?

What are GitHooks? Explained in 5 minutes

Create and manage severity rules. Supercharge your remediation.

Protect Your Private Packages With GitGuardian Honeytoken

Keep Your Private Code Packages Private With GitGuardian Honeytoken

Protect Your Private Repos From Code Leaks With GitGuardian Honeytoken

Get Incident Alerts Where You Want Them With GitGuardian Custom Webhooks

IaC Scanning with ggshield - GitGuardian CLI

Customize Your GitGuardian Remediation Workflow

Automating incident Remediation with GitGuardian Playbooks

Monthly Archive

Follow Us