Git

Auto-resolve Incidents When Valid Secrets Are Revoked With GitGuardian Playbooks

Oct 4, 2023 By GitGuardian In GitGuardian

Many teams choose to mark incidents as resolved once the secret involved has been revoked or rotated. With the GitGuardian auto-resolution playbook, you can automate the remediation process, saving you a step any time a credential becomes invalid. This works for both real-time detection and all historical incidents whenever an incident is re-checked for validity.

View Video

GitGuardian

Read more about Auto-resolve Incidents When Valid Secrets Are Revoked With GitGuardian Playbooks

Cybersecurity and AI deep in the heart of Texas Cyber Summit

Oct 4, 2023 By Dwayne McDaniel In GitGuardian

Dive into our Texas Cyber Summit 2023 recap. Discover how AI is impacting cybersecurity, learn about Zero Trust strategies, ransomware dos and don'ts, and more.

Read Post

GitGuardian

Read more about Cybersecurity and AI deep in the heart of Texas Cyber Summit

Protecting Your Software Supply Chain: Understanding Typosquatting and Dependency Confusion Attacks

Sep 29, 2023 By Guest Expert In GitGuardian

Typosquatting and dependency confusion are two common tactics used by hackers to exploit open-source package repositories. Understand how these attacks work and discover preventive measures to secure your infrastructure.

Read Post

GitGuardian

Read more about Protecting Your Software Supply Chain: Understanding Typosquatting and Dependency Confusion Attacks

Hands-on guide to Runtime Security for CI/CD Pipelines with StepSecurity

Sep 27, 2023 By GitGuardian In GitGuardian

In this webinar, we are joined by Varun Sharma and Ashish Kurmi, founders of StepSecurity. StepSecurity is a pioneer in runtime security for CI/CD pipelines. Given that CI/CD is a high-privileged environment that builds release artifacts and has admin cloud credentials, there has been an increase in attacks on CI/CD pipelines. The importance of CI/CD Security has been underlined by recent guidance from the Cybersecurity & Infrastructure Security Agency (CISA) and the National Security Agency (NSA)

View Video

GitGuardian

Read more about Hands-on guide to Runtime Security for CI/CD Pipelines with StepSecurity

Secrets management takes more than just tools

Sep 27, 2023 By Dwayne McDaniel In GitGuardian

Can you just purchase a tool to give you good security posture? Discover how People, Processes, and Tools elevate code security to protect against data breaches.

Read Post

GitGuardian

Read more about Secrets management takes more than just tools

Microsoft AI involuntarily exposed a secret giving access to 38TB of confidential data for 3 years

Sep 26, 2023 By Thomas Segura In GitGuardian

Discover how an overprovisioned SAS token exposed a massive 38TB trove of private data on GitHub for nearly three years. Learn about the misconfiguration, security risks, and mitigation strategies to protect your sensitive assets.

Read Post

GitGuardian

Read more about Microsoft AI involuntarily exposed a secret giving access to 38TB of confidential data for 3 years

A look at the future of supply chain and national security: Updates from CISA and NIST

Sep 22, 2023 By Dwayne McDaniel In GitGuardian

Explore CISA & NIST's recent cybersecurity publications. Get key insights into securing vital infrastructure in an ever-evolving threat landscape and how GitGuardian can help.

Read Post

GitGuardian

Read more about A look at the future of supply chain and national security: Updates from CISA and NIST

From GitHub Leak to Pwn: A Hacker's Kill Chain

Sep 20, 2023 By Nicolas DANJON In GitGuardian

Discover how seemingly minor mistakes, like leaking a secret to a non-publicly accessible resource, can lead to a major breach. In this engaging scenario, see how an attacker would chain vulnerabilities to access highly sensitive areas, and learn a valuable lesson along the way.

Read Post

GitGuardian

Read more about From GitHub Leak to Pwn: A Hacker's Kill Chain

Honeytoken Adventure: From Beta to Beyond

Sep 18, 2023 By Soujanya Ain In GitGuardian

Read the journey of GitGuardian Honeytoken, a tool that is changing the game in supply chain protection and threat detection. Explore its features, the motivation behind its creation, and what's next.

Read Post

GitGuardian

Read more about Honeytoken Adventure: From Beta to Beyond

Three Recent Examples of Why You Need to Know How Vulnerable Your Secrets Are

Sep 15, 2023 By Nicolas DANJON In GitGuardian

In today's digital landscape, the issue of compromised credentials has become a major concern. Discover how renowned companies like Microsoft, VMware, and Sourcegraph were recently confronted with the threats of secrets sprawling.

Read Post

GitGuardian

Read more about Three Recent Examples of Why You Need to Know How Vulnerable Your Secrets Are

Subscribe to Git

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Git

Auto-resolve Incidents When Valid Secrets Are Revoked With GitGuardian Playbooks

Cybersecurity and AI deep in the heart of Texas Cyber Summit

Protecting Your Software Supply Chain: Understanding Typosquatting and Dependency Confusion Attacks

Hands-on guide to Runtime Security for CI/CD Pipelines with StepSecurity

Secrets management takes more than just tools

Microsoft AI involuntarily exposed a secret giving access to 38TB of confidential data for 3 years

A look at the future of supply chain and national security: Updates from CISA and NIST

From GitHub Leak to Pwn: A Hacker's Kill Chain

Honeytoken Adventure: From Beta to Beyond

Three Recent Examples of Why You Need to Know How Vulnerable Your Secrets Are

Monthly Archive

Follow Us