Application Security

The latest News and Information on Application Security including monitoring, testing, and open source.

The Darkside of GraphQL

Jan 3, 2024 By Datadog In Datadog

GraphQL is a query language for APIs that provides a powerful and efficient way to query and manipulate data. As powerful and versatile as GraphQL is, its downside is that it can be vulnerable to certain security threats. In this presentation, we will discuss the security vulnerabilities associated with GraphQL, from the basics to more advanced threats, and how to best protect against them. After this presentation, attendees will have a better understanding of security vulnerabilities in GraphQL, as well as an understanding of the steps needed to protect against them.

View Video

Datadog

Read more about The Darkside of GraphQL

Application Security Posture Management with GitGuardian and ArmorCode

Jan 2, 2024 By Guest Expert In GitGuardian

Managing GitGuardian Findings as Part of a Complete Risk-Based Software Security Program with ArmorCode ASPM.

Read Post

GitGuardian

Read more about Application Security Posture Management with GitGuardian and ArmorCode

Kubernetes Security Fundamentals - Introduction

Jan 2, 2024 By Datadog In Datadog

This is the first video in a series that we’ll be doing around Kubernetes Security Fundamentals. We’ll discuss some of the complexities of Kubernetes Security, and also a bit about what we’ll be covering in the series. For more information, see our blog post on Datadog Security Labs.

View Video

Datadog

Read more about Kubernetes Security Fundamentals - Introduction

Adding License Notices in Mend.io

Dec 30, 2023 By Mend In Mend

This video describes open source license notices, why they are required and how to set the notice within the Mend SCA user interface.

View Video

Mend

Read more about Adding License Notices in Mend.io

Enhancing Security with eBPF: Use Cases Explored

Dec 28, 2023 By Cenk Kalpakoğlu In Kondukto

eBPF, short for Extended Berkeley Packet Filter, is a kernel technology that allows programs to run without requiring changes to the kernel source code or the addition of new modules. eBPF was built on top of the Berkeley Packet Filter (cBPF). Notable milestones in its development include the first in-kernel Linux JIT compiler in April 2011 and the first non-networking use case of the classic Berkeley Packet Filter, seccomp-bpf, appearing in January 2012. It can be used for a variety of purposes.

Read Post

Kondukto

Read more about Enhancing Security with eBPF: Use Cases Explored

How Malicious Code Enters Applications

Dec 27, 2023 By Andreas Wiese In Kondukto

As the backbone of modern business operations, applications are frequently targeted by sophisticated malicious threats. In this blog post, we provide a high-level overview of how malicious code can enter your software applications. We look at different forms of malicious code, their entry points, practical tools and strategies for detection & prevention, focusing on innovative solutions.

Read Post

Kondukto

Read more about How Malicious Code Enters Applications

Breaking News: Panoptica Unveils Seamless Onboarding Experience!

Dec 20, 2023 By Sarabjeet Chugh In Panoptica

Hey Panoptica Community, We've got some important enhancements to the Panoptica experience to share with you today. Brace yourselves as we introduce a fresh, user-friendly onboarding experience that's set to simplify and improve how you connect and engage with Panoptica!

Read Post

Panoptica

Read more about Breaking News: Panoptica Unveils Seamless Onboarding Experience!

The Ins and Outs of Application Security Policy

Dec 19, 2023 By Anirban Banerjee In Riscosity

A policy, by definition, is a statement of management intent that is mandatory for an organization. A security policy, obviously, focuses on the security of information assets.

Read Post

Riscosity

Read more about The Ins and Outs of Application Security Policy

Datadog Cloud Security Management updates #shorts #datadog

Dec 18, 2023 By Datadog In Datadog

Join us on This Month in Datadog for a spotlight of Cloud Security Management updates: Security Inbox, CIEM, and Infrastructure Vulnerability Management.

View Video

Datadog

Read more about Datadog Cloud Security Management updates #shorts #datadog

Datadog on AWS Identity Management

Dec 18, 2023 By Datadog In Datadog

For many engineers, Identity Management can elicit a broad range of emotions—from confusion during setup and configuration, to complete disinterest as it disappears into the background during day-to-day work, to frustration they encounter erroneously blocked access, and sometimes to terror when misconfigurations lead to a breach.

View Video