Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Leveraging OpenAPI as a Core Element of API and Application Security

Dec 8, 2023 By Robert Dickinson In Graylog

An application’s attack surface is the sum of all the areas of an application which could be attacked by malicious attackers. This includes the application’s APIs, the underlying code, supporting infrastructure, and any other components which could be compromised. The goal for any organization is to reduce the attack surface area by discovering and minimizing potential vulnerabilities.

Read Post

Graylog

Read more about Leveraging OpenAPI as a Core Element of API and Application Security

Synopsys named as a Customers' Choice in the 2023 Gartner Peer Insights Voice of the Customer for Application Security Testing

Dec 7, 2023 By Synopsys Editorial Team In Synopsys

Synopsys is proud to announce that we have been recognized as a Customers’ Choice vendor in the 2023 Voice of the Customer for Application Security Testing on Gartner® Peer Insights™. This distinction is a recognition of vendors in this market based on feedback and ratings from 59 verified end users of our product as of October 2023. Overall, Synopsys reviewers gave us a 4.6 out of 5, with 90% saying they would recommend our product.

Read Post

Synopsys

Read more about Synopsys named as a Customers' Choice in the 2023 Gartner Peer Insights Voice of the Customer for Application Security Testing

Dynamic Application Security Testing: Benefits, Pitfalls, and Top Open-Source Solutions

Dec 7, 2023 By Guest Expert In GitGuardian

In code security, not everything is "shift left." Dynamic testing is as important to help developers build and ship secure applications on the right-hand side of the SDLC. Let's explore the benefits, pitfalls, and popular open-source DAST tools in this blog post from the Escape team.

Read Post

GitGuardian

Read more about Dynamic Application Security Testing: Benefits, Pitfalls, and Top Open-Source Solutions

Seeker IAST helps teams understand the security posture of their applications | Synopsys

Dec 7, 2023 By Synopsys In Synopsys

In this video, we show how product and security teams can determine the security posture of all applications within their organization. Join us to learn how to view compliance to security standards such as OWASP Top Ten, PCI DSS, and others across the entire application portfolio, drill into project level details, and see insights into endpoint risk coverage.

View Video

Synopsys

Read more about Seeker IAST helps teams understand the security posture of their applications | Synopsys

Job-to-be-Done: Understand what is being continuously tested and monitored across my attack surface

Dec 5, 2023 By Detectify In Detectify

In order for AppSec and ProdSec teams to stay on top of their growing attack surface, they must understand what parts of their attack surface are being continuously monitored and scanned, such as where, when, what, and how. This can include, but is not limited to.

Read Post

Detectify

Read more about Job-to-be-Done: Understand what is being continuously tested and monitored across my attack surface

ISO 27001 certification: 8 things we learned

Dec 5, 2023 By Roeland Delrue In Aikido

Aikido has just gone through the process of becoming ISO 27001:2022 and SOC 2 Type 2 compliant. And one of the things we wish we’d had was some practical, no-nonsense advice on how to get started. Best practices, things to watch out for - basically tips from someone who’d already been through the ISO 27001 certification process. Read more about Aikido’s path to becoming ISO 27001:2022 compliant and the ISO 27001 requirements.

Read Post

Aikido

Read more about ISO 27001 certification: 8 things we learned

Container Security Fundamentals - Seccomp

Dec 4, 2023 By Datadog In Datadog

In this video we're looking at how to harden Docker containers by seccomp to filter syscalls that containers can make.

View Video

Datadog

Read more about Container Security Fundamentals - Seccomp

Unveiling Application Security: Threats, Tools, and Best Practices for 2024

Dec 3, 2023 By Riscosity In Riscosity

In today's rapidly evolving digital landscape, application security has become a critical component of modern software development. As cyberattacks grow more sophisticated, ensuring the integrity of applications and protecting sensitive data that these applications store, process, or handle is of paramount importance. In this blog post, we will delve into the world of application security - exploring key components, testing techniques, essential tools, and best practices - to help you stay ahead of the curve and safeguard your applications from cyber threats.

Read Post

Riscosity

Read more about Unveiling Application Security: Threats, Tools, and Best Practices for 2024

Cronos Group chooses Aikido Security to strengthen security posture for its companies and customers

Nov 30, 2023 By Roeland Delrue In Aikido

An IT match made in… Belgium! Aikido Security, a SaaS startup from Ghent, will provide application security to The Cronos Group, an e-business integrator headquartered in Kontich, with over 5,000 clients across their 570+ companies in the Benelux region. This strategic partnership is set to fortify The Cronos Group’s security posture and Aikido Security’s influence in the cybersecurity industry.

Read Post

Aikido

Read more about Cronos Group chooses Aikido Security to strengthen security posture for its companies and customers

Introducing SBOM support in Polaris | Synopsys

Nov 29, 2023 By Synopsys In Synopsys

In this video, you will find how easy it is to create a Software Bill of Materials (SBOMs) using Polaris cloud-based AppSec platform. Join us as we demonstrate how your teams can instantly generate an SBOM report in commonly used formats such as SPDX and CycloneDX.

View Video