WEBINAR MOMENT: Do Not Push This To Production
A fun moment from GitGuardian's Ethical Hacking Webinar with Snyk's Sonya Moisset. Sonya finds code that shouldn't have been pushed to production.
Security | Threat Detection | Cyberattacks | DevSecOps | Compliance
The Latest Cybersecurity News & Insights From Around The World
Git
WEBINAR MOMENT: Trying a Directory Traversal Hack
A clip from GitGuardian's webinar on Ethical Hacking. Special guest, Snyk's Sonya Moisset, uses a directory traversal hack to get much deeper into the app's source code than should ever be allowed.
GitGuardian Infra as Code Security Analytics
Are you working toward better security for your infrastructure as Code deployments? GitGuardian can now help you track your progress! With the new Analytics view built into GitGuardian's Infra as Code Security, you can quickly understand the health of your IaC practice from one dashboard.
"Do Not Push To Production" And Other Insecure Code, Demonstrated By An Ethical Hacker
Enjoy highlights from GitGuardian's ethical hacking webinar with a friend from Snyk.
Monitor GitHub with Datadog Cloud SIEM
GitHub is a mission-critical software development and version control platform that is used to store proprietary source code and other sensitive data. Monitoring logs generated by activity in your GitHub environment can be useful, as unexpected patterns of behavior could indicate attacker activity or insider threats.
Are the Fears about the EU Cyber Resilience Act Justified?
Discover the inner workings of the recently implemented Cyber Resilience Act (CRA) in the EU and explore why this framework has raised concerns about jeopardizing the open-source ecosystem. Join us in our latest blog post to delve into this important topic.
Have Your Secrets Leaked? It's time to find out!
We understand the struggle of securing sensitive data—API tokens, cloud credentials, and database URLs have a knack for slipping into the public eye, be it in code repositories, CI job logs, or unexpected corners like Jira tickets. We've been championing this cause since 2017, scouring over a billion public GitHub commits last year alone and uncovering a staggering 10 million in 2022. We've gone beyond reports, beyond thought leadership, to unveil a real solution: HasMySecretLeaked!
The Significance of Honeypots and the Rise of Honeytokens
Discover the roles and risks of honeypots and honeytokens in cybersecurity with this article. Understand how they work, the benefits they bring to your security strategy, and the precautions needed to avoid potential pitfalls.
TechBash: Automation, Security and Development Best Practices In The Poconos
Explore automation, security, and development best practices at TechBash 2023. Discover GitHub Actions, Azure Key Vault, and strategic automation insights.
Secure by Default: Integrating GitGuardian in Vermeer's Software Development Lifecycle
Discover how Vermeer Corporation transformed its software development lifecycle to prioritize security. Learn about their journey from open-source tools to adopting GitGuardian for seamless, integrated secret scanning, enhancing DevSecOps with a 'Secure by Default' approach.