Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

November 2024

sysdig

Falco vs. Sysdig OSS: Choosing the Right Tool for the Job

Nov 26, 2024 By Nigel Douglas In Sysdig
The open-source ecosystem is rich with tools that empower developers and security practitioners alike. Two standout projects are Sysdig OSS and Falco, both of which leverage deep system-level instrumentation to provide insights and enhance security. However, while they share a common foundation, they serve distinct purposes. This blog explores the strengths of Sysdig OSS and Falco, how they differ, and how they can complement each other.
Read Post
aikido

Balancing Security: When to Leverage Open-Source Tools vs. Commercial Tools

Nov 15, 2024 By Mackenzie Jackson In Aikido
When deciding what approach to use for security tooling, it seems like there are two choices. Like everything in security, there is more to unpack in reality. In this article I want to explore when open-source security tools should be used, when commercial tools are more effective, and if we can trust tools built from an open-source core.
Read Post

Secure Python code faster with Code Sight: Real-time issue detection in Visual Studio | Black Duck

Nov 12, 2024 By Synopsys In Synopsys
Join David Bohannan, an R&D engineer at Black Duck, as he demonstrates using Black Duck's IDE plug-in, Code Sight to run static analysis on Python code within Visual Studio. Watch as Code Sight instantly detects vulnerabilities like OS command injection and cross-site request forgery while code is being written, helping developers fix issues early in the software lifecycle. David will demonstrate how leveraging Coverity's Rapid Scanning engine through Code Sight can allow developers to tackle issues such as secret scanning and ensure hardcoded secrets are flagged before they become risks to applications further downstream.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.