Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

Introducing Motific.ai. Accelerate your GenAI adoption journey.

Feb 6, 2024 By Panoptica In Panoptica

Unlock rapid, trusted delivery of GenAI capabilities in your organization and streamline management of GenAI building blocks. Outshift is Cisco’s incubation engine, innovating what's next and new for Cisco products and sharing our expertise on emerging technologies. Discover the latest on cloud native applications, cloud application security, generative AI, quantum networking and security, future-forward tech research, our latest open source projects and more.

View Video

Panoptica

Read more about Introducing Motific.ai. Accelerate your GenAI adoption journey.

Splunk Enterprise affected by CVE-2023-40598

Feb 5, 2024 By Kondukto Security Team In Kondukto

This is an overview of the CVE-2023-40598 vulnerability, which affects Splunk Enterprise versions below 8.2.12, 9.0.6, and 9.1.1. We will explain the nature of the vulnerability, how it can be exploited, and how it can be fixed. We will also provide code examples, links to web pages with valuable information, and tips on how to prevent similar vulnerabilities in the future.

Read Post

Kondukto

Read more about Splunk Enterprise affected by CVE-2023-40598

Busting the App Count Myth

Feb 1, 2024 By Avishay Zawoznik In Cato Networks

Many security vendors offer automated detection of cloud applications and services, classifying them into categories and exposing attributes such as security risk, compliance, company status etc. Users can then apply different security measures, including setting firewall, CASB and DLP policies, based on the apps categories and attributes. It makes sense to conclude that the more apps are classified, the merrier. However, such a conclusion must be taken with a grain of salt.

Read Post

Cato Networks

Read more about Busting the App Count Myth

Automated SCM project scanning with Black Duck SCA | Synopsys

Feb 1, 2024 By Synopsys In Synopsys

Black Duck’s automated project onboarding meets teams where they already are and enables them to quickly onboard and scan multiple projects in a single step. This means no manual scanning needed, and no interfacing with builds or pipeline – these scans are mapped and executed entirely within Black Duck. In this video, we'll demonstrate how to.

View Video

Synopsys

Read more about Automated SCM project scanning with Black Duck SCA | Synopsys

AppSec Decoded: Exploring BSIMM14 trends and recommendations

Jan 31, 2024 By Synopsys In Synopsys

Uncover key software security trends and recommendations from the BSIMM14 to help improve your security program.

View Video

Synopsys

Read more about AppSec Decoded: Exploring BSIMM14 trends and recommendations

A Look into Modern Security Orchestration

Jan 29, 2024 By Can Taylan Bilgin In Kondukto

Have you ever thought there could be a smarter way to handle your organization's app security? In this blog post we're going to provide an overview of modern Security Orchestration, show how it fits perfectly with DevSecOps and how to make sure that security is part of your software development lifecycle right from the start.

Read Post

Kondukto

Read more about A Look into Modern Security Orchestration

Polaris Software Integrity Platform: Automate Any Scan, Anytime, Anywhere, All at Once | Synopsys

Jan 26, 2024 By Synopsys In Synopsys

Polaris Software Integrity Platform is the first no compromise cloud-based application security solution that meets the diverse needs of Development, DevOps, and Security teams. Polaris Overview Highlights: Watch this overview to see how Polaris can benefit your organization.

View Video

Synopsys

Read more about Polaris Software Integrity Platform: Automate Any Scan, Anytime, Anywhere, All at Once | Synopsys

Network Security vs. Application Security: The Complete Guide

Jan 25, 2024 By Tsippi Dach In AlgoSec

Enterprise cybersecurity must constantly evolve to meet the threat posed by new malware variants and increasingly sophisticated hacker tactics, techniques, and procedures. This need drives the way security professionals categorize different technologies and approaches. The difference between network security and application security is an excellent example. These two components of the enterprise IT environment must be treated separately in any modern cybersecurity framework.

Read Post

AlgoSec

Read more about Network Security vs. Application Security: The Complete Guide

Rapid Bulk SCM onboarding made easy with Polaris | Synopsys

Jan 24, 2024 By Synopsys In Synopsys

It is a constant challenge for modern app and DevOps team to onboard and scale AppSec test in today's highly complex and distributed software environment. Ability to automate bulk upload and scanning of an organizations' hundreds of repositories is the first step. This video shows how the Polaris integrated application security testing SaaS platform helps: To learn more, visit synopsys.com/polaris.

View Video

Synopsys

Read more about Rapid Bulk SCM onboarding made easy with Polaris | Synopsys

What is an Application Security Tool? Top 5 App Security Tools

Jan 23, 2024 By SignMyCode In SignMyCode

Applications are becoming the gateway for attackers to gain unauthorized access and perform their malicious activities on end-user devices. And when such a thing happens, not only the user but also the software development firm suffers. So, now it has become utterly important to ensure the app security with the best-in-class tools available.

Read Post