Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

%term

sumologic

NoSQL-based stacks exposed to the Internet

May 27, 2020 By Kevin Stear In Sumo Logic
NoSQL technology has become more popular in recent years thanks to the development of new open-source NoSQL databases that are relatively easy to install, use and integrate with web frameworks. An example of one of those popular frameworks on the internet is known as MEAN (MongoDb, Express.js, Angular.js, Node.js). These NoSQL frameworks have become very popular for things such as content management, catalogs and big data in general.
Read Post
teleport

Why Blockchain Needs Kubernetes

May 27, 2020 By Virag Mody In Teleport

In under five years time, Kubernetes has become the default method for deploying and managing cloud applications, a remarkably fast adoption rate for any enterprise technology. Amongst other things, Kubernetes’s power lies in its ability to map compute resources to the needs of services in the current infrastructure paradigm. But how does this tool work when faced with the new infrastructure layer that is blockchain? Can the two technologies be used in conjunction?

Read Post

Veracode Corporate Video

May 27, 2020 By Veracode In Veracode
Veracode is a SaaS-based application security (AppSec) company founded in 2006 by a group of skilled computer hackers. The hackers, including Chris Wysopal, realized that software was very vulnerable to cyberattacks. Over the years, Veracode has established industry-leading technology that helps developers and security professionals find and fix vulnerabilities in their software. Together with Veracode, customers can confidently secure their code.
View Video

Veracode Full Solution

May 27, 2020 By Veracode In Veracode
Veracode helps software companies write secure code on time. Veracode is a SaaS-based, or cloud-based, application security (AppSec) solution. It empowers developers to write secure code with real-time feedback in the software development lifecycle (SDLC) and provides security professionals with the tools and analytics to scale their programs and report on key metrics. Veracode’s solution comprises multiple scan types including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), interactive analysis (IAST), and penetration testing.
View Video

Veracode Static Analysis Solution

May 27, 2020 By Veracode In Veracode
Veracode, a SaaS-based application security (AppSec) provider, offers multiple scan types including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), interactive analysis (IAST), and penetration testing. Veracode’s Static Analysis solution builds security into each phase of the software development lifecycle (SDLC) with an IDE Scan, Pipeline Scan, and Policy Scan. The scans provide fast, automated feedback to help developers secure code and remediate vulnerabilities. Teams can incorporate Veracode into their tooling with more than 30 out-of-the-box integrations, plus application programming interfaces (APIs), and code samples.
View Video

Veracode Software Composition Analysis Solution

May 27, 2020 By Veracode In Veracode
Veracode, a SaaS-based application security (AppSec) provider, offers multiple scan types including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), interactive analysis (IAST), and penetration testing. Veracode Software Composition Analysis enables developers to take advantage of open source libraries without increasing the risk of a cyberattack. Veracode uses data mining, natural language processing, and machine learning to grow its SCA database.
View Video

Veracode Dynamic Analysis Solution

May 27, 2020 By Veracode In Veracode
Veracode, a SaaS-based application security (AppSec) provider, offers multiple scan types including static analysis (SAST), dynamic analysis (DAST), software composition analysis (SCA), interactive analysis (IAST), and penetration testing. Veracode Dynamic Analysis helps organizations reduce the risk of a breach across their web applications. Our dynamic scans have a low false-positive rate, integrate with build systems like Jenkins, can be triggered through application programming interfaces (APIs), and combine findings with remediation tips.
View Video

Security for Work from Home Tools with Live Q&A Sponsored by Optiv

May 27, 2020 By Tripwire In Tripwire
As more and more professionals connect to your organization’s networks via VPN and conduct their work with tools like Zoom, Teams and WebEx, it’s critical that your cybersecurity processes expand to include these changes. Make sure you and your teams are up to speed with best practices for work-from-home tools and common mistakes you’ll want to avoid. You can find a special question and answer sponsored by Optiv at the end of the video.
View Video
tripwire

The MITRE ATT&CK Framework: Exfiltration

May 27, 2020 By Travis Smith In Tripwire

Once an attacker has established access and pivoted around to the point of gathering the necessary data, they will work on exfiltration of that data. Not all malware will reach this stage. Ransomware, for example, usually has no interest in exfiltrating data. As with the Collection tactic, there’s little guidance on how to mitigate an attacker exfiltrating data from the enterprise.

Read Post

Copyright © 2024 OpsMatters™. All rights reserved.