Security Boulevard

APRIL 19, 2024

Security testing allows you to evaluate the robustness of applications and systems and identify potential weaknesses that attackers may exploit. DAST and fuzzing are two popular, important, and proven security testing methods. This is where the white-box fuzz testing approach is helpful.

Software 64

Software Technology 64

Appknox

JULY 14, 2022

“Static Application security testing(SAST), or static analysis is a methodology testing that examines source code to identify vulnerabilities that make the applications of your organization vulnerable to attack. What is Static Code Analysis? SAST is one of the matured security testing methods.

Mobile 105

Mobile Cybersecurity 105

Veracode Security

NOVEMBER 2, 2023

Application Security Testing (AST) encompasses various tools, processes, and approaches to scanning applications to uncover potential security issues. SAST follows a white-box testing approach to analyze the source code, byte code, and binaries to identify exploitable vulnerabilities and coding errors.

Engineering 59

Engineering Software 59

Security Boulevard

JANUARY 12, 2022

This blog post provides a general overview of the roles and importance of Dynamic Application Security Testing (DAST) and Static Application Security Testing (SAST) in Application Security Testing (AST), as well as how fuzzing fits into this picture.

125

125

The Last Watchdog

FEBRUARY 28, 2022

One could make the argument that Application Programming Interfaces — APIs – are a vital cornerstone of digital transformation. However, APIs have gained traction so rapidly and deeply that not nearly enough attention has been paid to the associated security shortcomings. Related: How a dynamic WAF can help protect SMBs.

Digital transformation 266

Digital transformation Penetration Testing Mobile IoT 266

Appknox

FEBRUARY 28, 2024

Mobile Security Framework (MobSF), launched by OWASP in 2015, is a partially automated, open-source, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static, dynamic, and malware analysis.

Mobile 52

Mobile Malware Penetration Testing 52

eSecurity Planet

MAY 19, 2023

Application security tools and software solutions are designed to identify and mitigate vulnerabilities and threats in software applications. Their main purpose is to protect applications from unauthorized access, data breaches, and malicious attacks.

Software 96

Software Risk Encryption Marketing 96

Security Boulevard

FEBRUARY 3, 2021

The development of a fully optimized and secure application or software requires a wide array of testing tools and analyzers to verify the quality of the application and to make sure that it is running as expected.

Software 96

Software Mobile Cybersecurity 96

CyberSecurity Insiders

SEPTEMBER 30, 2021

The DevSecOps process is impossible without securing the source code. In this article, I would like to talk about Static Application Security Testing (SAST). About 90% of security incidents occur because of malicious exploitation of software bugs. What is SAST?

Marketing 128

Marketing Software Risk Technology 128

Security Boulevard

AUGUST 9, 2022

If you have followed Contrast's progress over the years, you will recognize us as a leading provider of Interactive Application Security Testing (IAST)/ Runtime Application Self-Protection (RASP) (and recently Static Analysis Security Testing [SAST!])

Technology 115

Technology 115

Veracode Security

SEPTEMBER 19, 2023

Developing and maintaining secure code at scale is hard. Having the right Static Application Security Testing (SAST) solution makes it easier, but how are practitioners to choose? Veracode earns the top scores across the Current Offering, Strategy, and Market Presence (tied) categories.

Marketing 52

Marketing 52

CSO Magazine

MAY 16, 2023

Software supply chain security provider Arnica has added new real-time scanning tools to its namesake code-security suite, including static application security testing (SAST ), infrastructure as code (IaC) scanning, software component analysis (SCA) , and third-party package reputation checks.

Risk 89

Risk Software 89

CSO Magazine

MARCH 22, 2023

Backslash Security has announced its launch with a new cloud-native application security (AppSec) solution designed to identify toxic code flows and automate threat models. To read this article in full, please click here

Risk 71

Risk 71

Security Boulevard

MAY 8, 2023

SAST stands for Static Application Security Testing, and it refers to the process of analyzing the source code of an application to identify potential security vulnerabilities before it is compiled and executed. appeared first on Security Boulevard.

64

64

Security Boulevard

AUGUST 21, 2023

In the fast-paced world of modern development that is driven by the constant need for innovation and rapid delivery, security teams are facing an increasing challenge in ensuring secure application delivery.

Software 96

Software Risk 96

Security Boulevard

DECEMBER 20, 2021

GrammaTech’s CodeSonar static application security testing (SAST) solution already has great integrations with the tools our customers rely on to develop software today. Focused on Enabling DevSecOps appeared first on Security Boulevard. The post GrammaTech Releases CodeSonar Version 6.2

Software 115

Software 115

eSecurity Planet

JUNE 22, 2023

Dynamic Application Security Testing (DAST) combines elements of pentesting, vulnerability scanning and code security to evaluate the security of web applications. By doing this, DAST helps determine how secure the web application is and pinpoint areas that need improvement.

Software 85

Software Cyber Attacks Hacking Risk 85

Security Boulevard

OCTOBER 5, 2022

Contrast has expanded its Static Analysis Security Testing (SAST) language coverage to support client-side JavaScript, including Angular, React and jQuery in both the enterprise version of Contrast Scan as well as CodeSec, Contrast’s free security tool for developers. in October 2022.

98

98

Security Weekly

MAY 10, 2021

Application security has become a complex, distributed problem. During the days of waterfall development and monolithic applications, application security was pretty straight forward – statically scan your source code, dynamically test your business logic, and deploy a web application firewall to protect layer 7 traffic.

Firewall 94

Firewall 94

Security Boulevard

FEBRUARY 21, 2022

With the increasing reliance on software driving critical functionality in all types of products such as industrial controls, medical devices, automotive sensors, flight control systems and so much more, ensuring the quality, safety and security of the software is more essential than ever.

Software 97

Software 97

The Last Watchdog

APRIL 4, 2022

APIs have become a security nightmare for SMBs and enterprises alike. The same types of security risks impact businesses, whatever their size. A primary culprit of these attacks is the lack of understanding of application programming interfaces, or APIs. Related: Using employees as human sensors.

Hacking 222

Hacking Penetration Testing Data breaches Authentication 222

The Last Watchdog

JUNE 21, 2023

June 21, 2023 – NowSecure, the recognized experts in mobile security and privacy, announced today that it has completed its latest annual SOC 2 Type 2 security audit – the industry benchmark for independent auditing of security controls for software vendors. Chicago, Ill.,

Mobile 100

Mobile Government Risk Media 100

Security Boulevard

MARCH 13, 2022

Static application security testing plays an important role in developing software to the standard. The post Advanced Driver Assistance, Safety, and SAST to Support ISO 26262 appeared first on Security Boulevard.

Software 95

Software 95

Security Boulevard

JULY 26, 2021

Building secure software using the Software Bill of Materials. In this context, the Executive Order assigns software developers the responsibility for maintaining source code security. In other words, securing the software development lifecycle (SDLC) is fundamental to security. Integration testing. Live operation.

Software 98

Software Risk Firmware Data breaches 98

Veracode Security

NOVEMBER 7, 2022

When it comes to protecting software, don’t count on automated testing to find all the vulnerabilities in your code. Here’s why manual penetration testing is more essential (and more accessible) than one might think. Manual penetration testing or “pen testing” has long been the great revealer of both successes and…

Penetration Testing 59

Penetration Testing Software 59

ForAllSecure

SEPTEMBER 15, 2021

Shoenfield -- Author, Passionate Security Architect, and Curious Questioner of Assumptions -- challenged whether application security can be fixed at FuzzCon 2021. Listed below are the top 3 takeaways from Shoenfield’s keynote presentation: Myth: SAST Is The Answer To Application Security.

Penetration Testing 52

Penetration Testing Marketing 52

ForAllSecure

JANUARY 12, 2022

Applications have become a major part of our lives. With more applications being built every day, the need for robust Application Security Testing (AST) has never been greater. In this blog post, we'll cover the roles DAST and SAST play in Application Security Testing and discuss how fuzzing fits into it all.

Software 52

Software Banking Authentication Passwords 52

Security Boulevard

OCTOBER 5, 2022

Contrast has expanded its Static Analysis Security Testing (SAST) language coverage to support client-side JavaScript, including Angular, React and jQuery in both the enterprise version of Contrast Scan as well as CodeSec, Contrast’s free security tool for developers. in October 2022.

64

64

Veracode Security

FEBRUARY 28, 2023

Static Application Security Testing (SAST) tools present a significant opportunity for organizations looking to reduce application security risk. Using the right SAST tools at the right times, you can seamlessly integrate and scale security workflows throughout the software development lifecycle (SDLC).

Software 52

Software Risk 52

Security Boulevard

AUGUST 2, 2021

One of the most common issues with security testing of applications is being inundated with vulnerability reports, containing too many vulnerabilities for a typical development team to handle. This includes reports from testing tools like SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing).

59

59

Veracode Security

JANUARY 26, 2021

The gold standard for creating an application security (AppSec) program is ??? Ideally, you should be using every testing type ??? static analysis, dynamic analysis, software composition analysis, interactive application security testing, and penetration testing. and always will be ???

Penetration Testing 81

Penetration Testing Risk Software Banking 81

eSecurity Planet

FEBRUARY 13, 2023

Application security is the practice of securing software and data from hackers, whether that application comes from a third party or was developed in house, regardless of where it resides or how it’s accessed. How Does Application Security Work? What Are the Types of Application Security?

Mobile 85

Mobile Computers and Electronics Risk DDOS 85

Veracode Security

JUNE 28, 2023

Veracode Fix is now available as an add-on to Veracode Static Analysis for customers on the North American instance. From nearly two decades of securing software, we know that fixing flaws, not just finding them, is what makes a profound impact on security posture. Too little security. The Problem: Too much time.

Software 52

Software Risk 52

Security Boulevard

SEPTEMBER 9, 2022

our static application security testing (SAST) solution, can be deployed in both on-premises and hybrid cloud models to seamlessly integrate into existing DevSecOps pipelines and facilitate remote team collaboration. GrammaTech CodeSonar 7.1, The post Announcing CodeSonar 7.1

Software 52

Software 52

Penetration Testing

JANUARY 31, 2023

Bearer Bearer is a static application security testing (SAST) tool that scans your source code and analyzes your data flows to discover, filter and prioritize security risks and vulnerabilities leading to sensitive data exposures (PII, PHI, PD). We... The post Bearer v1.29

Risk 40

Risk Penetration Testing 40

Security Weekly

FEBRUARY 16, 2021

There are a number of industry analyst reports on application security. For example, the Forrester Wave focuses on Static Application Security Testing, the Gartner Magic Quadrant focuses on Application Security Testing as a whole, […].

Marketing 52

Marketing Risk 52

ForAllSecure

DECEMBER 20, 2022

Software application vulnerabilities fall into three different risk categories : Known Known : Known Knowns are identifiable risks that are known to lead to compromise. Static Application Security Testing (SAST), or static analysis tools uncover bugs by analyzing source code.

Risk 40

Risk Software 40