%term

Using ggshield Throughout The Software Development Lifecycle - A Developer's View of GitGuardian

Mar 2, 2023 By GitGuardian In GitGuardian

Take a tour of how developers commonly use ggshield, the free and open source GitGuardian CLI to find hardcoded secrets. We will also see how developers participate in the remediation process. In this video demo, see: Learn more at docs.gitguardian.com

View Video

GitGuardian

Read more about Using ggshield Throughout The Software Development Lifecycle - A Developer's View of GitGuardian

Automated severity scoring comes to the GitGuardian secrets detection platform!

Feb 24, 2023 By Ziad Ghalleb In GitGuardian

This new feature automates assigning severity levels to each incident, allowing security teams to quickly identify the most critical ones and prioritize their response accordingly.

Read Post

GitGuardian

Read more about Automated severity scoring comes to the GitGuardian secrets detection platform!

Create AWS Honeytokens easily to catch hackers

Feb 24, 2023 By GitGuardian In GitGuardian

learn how to create AWS Honey Tokens that alert you when someone attempts to use them. Honey tokens are API or access keys that are real but harmless and can be used as an early warning system to know when an intruder has made it into your system. In this video, we run through the simple steps to be able. to create your very own AWS Honey Tokens using an open-source project and all your own infrastructure.

View Video

GitGuardian

Read more about Create AWS Honeytokens easily to catch hackers

Supply Chain Security: Sigstore and Cosign (Part II)

Feb 22, 2023 By Guest Expert In GitGuardian

The ability to sign and verify the integrity and origin of software artifacts, such as Docker images, is critical to supply chain security. Let's try Sigstore, a new standard that promises to make this process much easier.

Read Post

GitGuardian

Read more about Supply Chain Security: Sigstore and Cosign (Part II)

Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

Feb 17, 2023 By Dwayne McDaniel In GitGuardian

Misleading attackers to trigger alarms can stop them in their tracks and keep damage to a minimum. Honeytokens, like the ones you can make with GitGuardian's ggcanary, let you easily set such traps.

Read Post

GitGuardian

Read more about Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

GitGuardian Infra as Code Security Overview

Feb 10, 2023 By GitGuardian In GitGuardian

Software has eaten the world, including our infrastructure. While there are a lot of advantages to Infrastructure as Code, IaC, there are new dangers as well. An unnoticed misconfiguration or security issue in one file can quickly replicate issues throughout all of your environments.

View Video

GitGuardian

Read more about GitGuardian Infra as Code Security Overview

CloudNativeSecurityCon 2023: A Unique Community Event Focused On The Future Of Open Source and Cloud Native Security

Feb 8, 2023 By Dwayne McDaniel In GitGuardian

Read some of the highlights from CloudNativeSecurityCon 2023, the first-of-its-kind in-person event, grown from the conversations of the community on the front lines of open source security.

Read Post

GitGuardian

Read more about CloudNativeSecurityCon 2023: A Unique Community Event Focused On The Future Of Open Source and Cloud Native Security

GitGuardian Named Leader in G2 and Sourceforge Winter 2023 Reports

Feb 6, 2023 By Carole Winqwist In GitGuardian

GitGuardian has been awarded four new badges in G2’s Winter 2023 Report and has been named a leader by Sourceforge.

Read Post

GitGuardian

Read more about GitGuardian Named Leader in G2 and Sourceforge Winter 2023 Reports

Supply Chain Security: What is SLSA? (Part I)

Feb 3, 2023 By Guest Expert In GitGuardian

Attacks on software supply chains have been around for some time, but recently they have evolved into much more dangerous threats. Let's dive into the SLSA framework to understand where supply chain security is headed.

Read Post

GitGuardian

Read more about Supply Chain Security: What is SLSA? (Part I)

How to Bake Security into your CI/CD Pipeline

Feb 1, 2023 By GitGuardian In GitGuardian

According to IBM Security's "The Cost of a Data Breach Report", the global cost of data breaches in 2022 increased by 2.6% compared to previous year, reaching $4.35 million. The source code of major companies like Nvidia, Microsoft, Uber, Slack, Toyota was leaked, often caused by usage of hardcoded secrets (you can see more details in the infographics below). In those cases, lateral movements were compromising software supply chain security. In their report Gartner claims about 45% of companies should expect to become targets of supply chain attacks by 2025.

Read Post

GitGuardian

Read more about How to Bake Security into your CI/CD Pipeline

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Using ggshield Throughout The Software Development Lifecycle - A Developer's View of GitGuardian

Automated severity scoring comes to the GitGuardian secrets detection platform!

Create AWS Honeytokens easily to catch hackers

Supply Chain Security: Sigstore and Cosign (Part II)

Intrusion Detection Through Cyber Deception: Disrupting Attacks With An Active Defense

GitGuardian Infra as Code Security Overview

CloudNativeSecurityCon 2023: A Unique Community Event Focused On The Future Of Open Source and Cloud Native Security

GitGuardian Named Leader in G2 and Sourceforge Winter 2023 Reports

Supply Chain Security: What is SLSA? (Part I)

How to Bake Security into your CI/CD Pipeline

Monthly Archive

Follow Us