Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Snyk's AppSec dream team

Mar 19, 2024 By Krysta Williams-Timm In Snyk

With springtime just around the corner, there’s a lot to be excited about — warmer weather, longer days, and, most importantly, basketball! In honor of the upcoming March Madness tournament, we’ve put together our own dream team for AppSec. Read on to discover the all-star features in application security this year and how they can help your team get a slam dunk in protecting applications from code to cloud.

Read Post

Snyk

Read more about Snyk's AppSec dream team

Introducing fAST Dynamic to the Polaris Software Integrity Platform | Synopsys

Mar 19, 2024 By Synopsys In Synopsys

Now a part of the Polaris Software Integrity Platform, fAST Dynamic provides next generation dynamic analysis at scale. fAST Dynamic is a DAST solution that provides an automated, self-service dynamic testing solution for effectively analyzing modern technologies that is fast, easy, and accurate.

View Video

Synopsys

Read more about Introducing fAST Dynamic to the Polaris Software Integrity Platform | Synopsys

Cloud Unfiltered with Nick Eberts - Complexity of Fleet Management - Episode 6

Mar 19, 2024 By Panoptica In Panoptica

Nick Eberts sits down with host Michael Chenetz to discuss platform engineering, fleet management and cloud-native security on this episode of Cloud Unfiltered. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.

View Video

Panoptica

Read more about Cloud Unfiltered with Nick Eberts - Complexity of Fleet Management - Episode 6

Security Debt: A Growing Threat to Application Security

Mar 18, 2024 By Jenny Buckingham In Veracode

Security debt is a major and growing problem in software development with significant implications for application security, according to Veracode's State of Software Security 2024 Report. Let’s delve a bit deeper into the scope and risk of security debt, and gain some insights for application security managers to effectively address this challenge. Security debt refers to software flaws that remain unfixed for a year or more.

Read Post

Veracode

Read more about Security Debt: A Growing Threat to Application Security

AI - Boon or Bane for Appsec

Mar 18, 2024 By Veracode In Veracode

Are you ready to dive into the world of application security and artificial intelligence? Watch the exclusive talk by the renowned Julian Totzek Hallhuber, Solutions Architecture Manager at Veracode, during Mind the Sec 2023 in Brazil. In this engaging talk, Julian explores the advantages and disadvantages of using AI in the AppSec landscape and discovers how AI is revolutionizing the way we protect our applications from constantly evolving cyber threats.

View Video

Veracode

Read more about AI - Boon or Bane for Appsec

Using webhooks to boost cloud-native application security

Mar 14, 2024 By Davide Sellitri In Tigera

In the ever-evolving landscape of cloud-native applications built with containers and Kubernetes, webhooks serve as the communication backbone, facilitating seamless integration between various components, especially in the realms of security, networking, and troubleshooting. This is further amplified when combined with popular collaboration tools such as Jira and Slack.

Read Post

Tigera

Read more about Using webhooks to boost cloud-native application security

Are your APIs secure? Try our new free tool: API Specification Evaluator

Mar 14, 2024 By Rami H. In Panoptica

Test API specification With the growing footprint of APIs, there is a strong need for secure-by-design APIs. A design blueprint of an API would be a helpful start in determining the security standard of an API. Fortunately, APIs have that blueprint known as an OpenAPI Specification. API Specifications play a crucial role in ensuring the security and functionality of APIs.

Read Post

Panoptica

Read more about Are your APIs secure? Try our new free tool: API Specification Evaluator

ASPM Best Practices for Secure Success

Mar 14, 2024 By Jessica Amado In Seemplicity

The days where applications were monoliths built of proprietary code, and releases were set quarterly are no more. Instead, they have been replaced by fast paced development sprints, with software created using plenty of code from open-source repositories. The growing complexities of software development and the associated risks have far exceeded the abilities of traditional application security.

Read Post

Seemplicity

Read more about ASPM Best Practices for Secure Success

Introducing kntrl: Enhancing CI/CD Security with eBPF

Mar 14, 2024 By Cenk Kalpakoğlu In Kondukto

CI/CD pipelines are formed by a series of steps that automate the process of software delivery. They integrate the practices of Continuous Integration (CI) and Continuous Delivery (CD) along with the tools, platforms, and repositories that enable them. Their goal is to simplify, streamline and automate large parts of the software development process.

Read Post

Kondukto

Read more about Introducing kntrl: Enhancing CI/CD Security with eBPF

AppSec Decoded: Three ways to successfully implement security in DevSecOps | Synopsys

Mar 11, 2024 By Synopsys In Synopsys

Proper planning and implementation of security into DevSecOps includes organizational alignment, more frequent testing of critical apps, and fostering a security culture with developer security training.

View Video