AST

Bridging the Gaps of Grey-box Fuzzing | FuzzCon Europe - Automotive Edition 2022

Nov 23, 2022 By Code Intelligence In Code Intelligence

Li Yuekang from NTU Singapore, & Dr. Sheikh Mahbub Habib from Continental present this talk. Software testing typically requires these three steps: Researchers have been focusing on improving the test case generation and execution feedback analysis while the topic of target program execution is under-studied, because executing the target program seems to be an easy task. However, through industry practice, they find that target program execution can be challenging for libraries or IoT software.

View Video

Code Intelligence

AST
Security

Read more about Bridging the Gaps of Grey-box Fuzzing | FuzzCon Europe - Automotive Edition 2022

FuzzCon Europe - Automotive Edition 2022

Nov 18, 2022 By Code Intelligence In Code Intelligence

FuzzCon Automotive is an uprising application security testing conference, bringing together developers, DevOps Engineers, and security experts to make automotive software more reliable and secure. Stay tuned for details about the speakers, agenda, and more!

View Video

Code Intelligence

Read more about FuzzCon Europe - Automotive Edition 2022

SAST - All About Static Application Security Testing

Nov 16, 2022 By Ayala Goldstein In Mend

Static Application Security Testing (SAST) has been a central part of application security efforts for more than 15 years. Forrester’s State Of Application Security Report, 2022 found that lacking application security remains a leading cause of external security breaches, so it’s safe to say that SAST will be in use for the foreseeable future. Contents hide 1 What Is SAST? 2 Why do we need SAST? 3 What problems does SAST address? 4 How does SAST work?

Read Post

Mend

Read more about SAST - All About Static Application Security Testing

SAST - All About Static Application Security Testing

Nov 16, 2022 By Adam Murray In Mend

Static Application Security Testing (SAST) has been a central part of application security efforts for more than 15 years. Forrester’s State Of Application Security Report, 2022 found that lacking application security remains a leading cause of external security breaches, so it’s safe to say that SAST will be in use for the foreseeable future.

Read Post

Mend

Read more about SAST - All About Static Application Security Testing

Embedded Testing Tools: A Comprehensive Guide

Nov 14, 2022 By Josh Grant In Code Intelligence

Due to increasing connectivity and dependencies, modern embedded applications in many industries including automotive, aviation, and even automated cow brushes (no joke) are constantly growing more complex. This complexity comes with implications for embedded testing tools and requires plenty of manual effort, depending on the toolchain. From an operational perspective, many embedded industries are tightly staffed and work in long cycles with strict deadlines.

Read Post

Code Intelligence

Read more about Embedded Testing Tools: A Comprehensive Guide

How Can Fuzzing Help Find Bugs in Hardware?

Nov 11, 2022 By Raghudeep Kannavara In Code Intelligence

The growing complexity of embedded systems coupled with the advent of increasingly sophisticated security attacks highlights a dire need for advanced automated vulnerability analysis tools. Fuzzing is an effective proven technique to find security-critical issues in systems, often without needing to fully understand the internals of the system under test.

Read Post

Code Intelligence

Read more about How Can Fuzzing Help Find Bugs in Hardware?

Secure Coding in C and C++ Using Fuzz Testing

Nov 8, 2022 By Jochen Hilgers In Code Intelligence

Today, I would like to show you to a simplified fuzz testing approach that enables secure coding of C and C++ applications. If you read this article to the end, you will learn about an automated security testing approach for C/C++ that can protect your applications against all sorts of memory corruptions and other common C/C++ vulnerabilities.

Read Post

Code Intelligence

Read more about Secure Coding in C and C++ Using Fuzz Testing

Scalable SAST and SCA in a single solution with Polaris fAST services

Nov 8, 2022 By Patrick Carey In Synopsys

Polaris fAST services are fast, powerful, and easy-to-use cloud-based application security testing, optimized for DevSecOps. Fast. These days, it can be hard for us to agree on much of anything. But one thing that seems to unite us all is that when we want something, we want it now. And we need it fast. Fast is definitely top-of-mind for anybody producing software. Delivery schedules are constantly being compressed, so anything that reduces the time for developer tasks is a good thing.

Read Post

Synopsys

Read more about Scalable SAST and SCA in a single solution with Polaris fAST services

Defensics adds gRPC support for distributed web and mobile application security testing

Nov 4, 2022 By Janne Ruotsalainen In Synopsys

Learn how the gRPC test suite and gRPC wizard enable Defensics customers to create their own test sequences from protocol buffer definitions.

Read Post

Synopsys

Read more about Defensics adds gRPC support for distributed web and mobile application security testing

Choosing a DAST solution: What to pay attention to?

Nov 1, 2022 By Alex Vakulov In AT&T Cybersecurity

The majority of today's web applications contain dangerous vulnerabilities. To analyze their security, one cannot do without a dynamic scanner. DAST (Dynamic Application Security Testing) tools allow you to detect and evaluate security problems quickly. Let me tell you what to look for when choosing such a tool.

Read Post