DevOps

ARMOBest Framework - what it is and why you need it?

Dec 6, 2021 By Leonid Sandler In ARMO

There were several security assessments and compliance frameworks in Kubescape before we released ARMOBest – NSA-CISA and MITRE. Naturally, people ask, why another one? Especially, if it’s not coming from a well-known source that some people may be required to comply with. Some frameworks, like MITRE, are designed bottom-up, mainly focusing on the infrastructure. Others, like NSA-CISA, are designed top-down, paying more attention to the application side.

Read Post

ARMO

Read more about ARMOBest Framework - what it is and why you need it?

Unified Agent - Local Scanning

Dec 4, 2021 By Mend In Mend

This is the first video in a series describing how the WhiteSource Unified agent can be used to detect open source artifacts and their known vulnerabilities and licensing risks. This video will focus on performing a scan on a user's local desktop.

View Video

Mend

Read more about Unified Agent - Local Scanning

Unified Agent - CI-CD Scanning | Azure DevOps

Dec 4, 2021 By Mend In Mend

This is the second video in a series describing how the WhiteSource Unified agent can be used to detect open source artifacts and their known vulnerabilities and licensing risks. This video will focus on performing a scan within a CI-CD pipeline such as Azure DevOps.

View Video

Mend

Read more about Unified Agent - CI-CD Scanning | Azure DevOps

Unified Agent - PreBuilt Docker Image

Dec 4, 2021 By Mend In Mend

This is the third video in a series describing how the WhiteSource Unified agent can be used to detect open source artifacts and their known vulnerabilities and licensing risks. This video will focus on performing a scan with a prebuilt docker image that contains the unified agent and specific versions of each package manager.

View Video

Mend

Read more about Unified Agent - PreBuilt Docker Image

Unified Agent - WhiteSource CLI

Dec 4, 2021 By Mend In Mend

This is the fourth video in a series describing how the WhiteSource Unified agent can be used to detect open source artifacts and their known vulnerabilities and licensing risks. This video will focus on performing a scan with the WhiteSource CLI which is a lightweight version of the unified agent that is designed for immediate feedback on a user's desktop.

View Video

Mend

Read more about Unified Agent - WhiteSource CLI

Hack The Box Winner Interview

Dec 2, 2021 By Snyk In Snyk

Capture the flag events are always a great way to learn new skills and meet new people. CTF's help bring security skills to a whole new level by creating simulated challenges. These events help build a better understanding of possible attack vectors against infrastructure and competitors.

View Video

Snyk

Read more about Hack The Box Winner Interview

Artifactory Installation & Viewing Results

Dec 2, 2021 By Mend In Mend

This is the first video in a series describing how WhiteSource can integrate with Artifactory to detect open source artifacts and their known vulnerabilities and licensing risks. This video will focus on how to install the plugin and view results within Artifactory

View Video

Mend

Read more about Artifactory Installation & Viewing Results

Zero Trust with Envoy, SPIRE and Open Policy Agent (OPA)

Dec 2, 2021 By Ash Narkar In Styra

Enterprises have traditionally relied on perimeter network security to keep attackers out and protect their organizationally unique sensitive data and resources. This approach works on the principle “verify, always trust” wherein authenticated users inside the network are trusted by default and allowed unfettered access. With the shift to cloud-native architecture, perimeter-based defenses have become obsolete and leave systems inherently vulnerable to malicious actors.

Read Post

Styra

Read more about Zero Trust with Envoy, SPIRE and Open Policy Agent (OPA)

Vulnerability Management - What You Need To Know

Dec 2, 2021 By Ayala Goldstein In Mend

Vulnerability management is becoming increasingly important to companies due to the rising threat of cyber security attacks and regulations like PCI DSS, HIPAA, NIST 800-731 and more. Vulnerability management is a comprehensive process implemented to continuously identify, evaluate, classify, remediate, and report on security vulnerabilities.

Read Post

Mend

Read more about Vulnerability Management - What You Need To Know

Using Teleport to Secure SSH and Kubernetes Access

Dec 2, 2021 By Teleport In Teleport

Open Security Summit Nov 12, 2021. Using Teleport to Secure SSH and Kubernetes Access. By Sakshyam Shah Teleport is a Certificate Authority and an Access Plane for your infrastructure.

View Video

Teleport

Read more about Using Teleport to Secure SSH and Kubernetes Access

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

DevOps

ARMOBest Framework - what it is and why you need it?

Unified Agent - Local Scanning

Unified Agent - CI-CD Scanning | Azure DevOps

Unified Agent - PreBuilt Docker Image

Unified Agent - WhiteSource CLI

Hack The Box Winner Interview

Artifactory Installation & Viewing Results

Zero Trust with Envoy, SPIRE and Open Policy Agent (OPA)

Vulnerability Management - What You Need To Know

Using Teleport to Secure SSH and Kubernetes Access

Monthly Archive

Follow Us