AST

From DAST to dawn: why fuzzing is the better solution

Apr 19, 2024 By Natalia Kazankova In Code Intelligence

Security testing allows you to evaluate the robustness of applications and systems and identify potential weaknesses that attackers may exploit. DAST and fuzzing are two popular, important, and proven security testing methods.

Read Post

Code Intelligence

Read more about From DAST to dawn: why fuzzing is the better solution

Filter and prioritize IAST vulnerability findings using Project Views in Seeker | Synopsys

Apr 11, 2024 By Synopsys In Synopsys

In this video, Product Manager, Scott Tolley shows how setting up the new Project Views feature in Seeker can help developers focus their time and attention on the most relevant vulnerability findings in running applications– without hiding the full details from security team. This new feature lets security and development teams...

View Video

Synopsys

Read more about Filter and prioritize IAST vulnerability findings using Project Views in Seeker | Synopsys

Protocol Fuzzing vs. Code Fuzzing

Apr 9, 2024 By Natalia Kazankova In Code Intelligence

In the domain of software testing and security analysis, fuzzing has emerged as a powerful technique for uncovering vulnerabilities and enhancing the resilience of software systems. Microsoft and Google have been using fuzzing for ages. They were early adopters of fuzzing technologies to test their own systems. Since launching in 2016, Google's OSS-Fuzz, a free fuzzing platform for critical open-source projects, has helped fix over 8,800 vulnerabilities and 28,000 bugs across 850 projects.

Read Post

Code Intelligence

Read more about Protocol Fuzzing vs. Code Fuzzing

The top 10 cybersecurity threats in 2024

Mar 28, 2024 By Antonio Mimmo In Code Intelligence

In 2023, cyber threats increased and diversified, resulting in increased security challenges for organizations around the globe. Meanwhile, AI greatly increased its presence in the realm of cybersecurity, both negatively and positively. 2024 is going to be a year in which advanced AI tools and complex social engineering tactics will further alter the cybersecurity game. In this article, we will focus on the most important cybersecurity threats in 2024.

Read Post

Code Intelligence

Read more about The top 10 cybersecurity threats in 2024

Demo: Code Intelligence's Fuzz Testing Platform. C/C++ example.

Mar 27, 2024 By Code Intelligence In Code Intelligence

Sergej Dechand, Code Intelligence's CEO, demonstrates how developers can submit new code, which is automatically tested and analyzed for security issues. Sergej explains the process of running tests, assessing findings, and integrating with ticketing systems. You'll also see how to measure code coverage and download reports. It includes all the mentioned use cases with simulating hardware and autogenerated fuzz test setup..

View Video

Code Intelligence

AST
Security

Read more about Demo: Code Intelligence's Fuzz Testing Platform. C/C++ example.

Bitbucket Cloud Integration with Mend

Mar 25, 2024 By Mend In Mend

Maximize your Bitbucket Cloud security with a one powerful integration. Get automated dependency updates with Mend Renovate, open-source security with Mend SCA, and code flaw detection with Mend SAST to streamline your workflow and code protection. Mend.io.

View Video

Mend

Read more about Bitbucket Cloud Integration with Mend

Introducing fAST Dynamic: Streamlining dynamic application security testing

Mar 19, 2024 By Vishrut Iyengar In Synopsys

Today, we're excited to announce the availability of fAST Dynamic, the latest offering on the Polaris Software Integrity Platform®. As web applications become more complex, so too does the task of testing them for security issues at the pace of modern development pipelines. Polaris fAST Dynamic simplifies dynamic application security testing (DAST) for modern web applications, while also making it faster and easier for the teams developing them.

Read Post

Synopsys

Read more about Introducing fAST Dynamic: Streamlining dynamic application security testing

Introducing fAST Dynamic to the Polaris Software Integrity Platform | Synopsys

Mar 19, 2024 By Synopsys In Synopsys

Now a part of the Polaris Software Integrity Platform, fAST Dynamic provides next generation dynamic analysis at scale. fAST Dynamic is a DAST solution that provides an automated, self-service dynamic testing solution for effectively analyzing modern technologies that is fast, easy, and accurate.

View Video

Synopsys

Read more about Introducing fAST Dynamic to the Polaris Software Integrity Platform | Synopsys

ISO/SAE 21434 compliance in 2024: what's new and how to act

Mar 18, 2024 By Sergej Dechand In Code Intelligence

Most modern vehicles are equipped with a variety of software systems and resemble sophisticated computers on wheels. The ISO/SAE 21434 standard is a framework that provides recommendations and requirements for secure software development in the automotive industry. But what is ISO 21434 exactly? And what can we expect from automotive software security in 2024? Read on and find out!

Read Post

Code Intelligence

Read more about ISO/SAE 21434 compliance in 2024: what's new and how to act

SAST vs. DAST: What's the best method for application security testing?

Mar 18, 2024 By Apoorva Phadke In Synopsys

Static application security testing (SAST) and dynamic application security testing (DAST) are testing methodologies that help find security vulnerabilities that could leave an organization’s applications susceptible to attack.

Read Post