Tag: application security
DefectDojo Adds Ability to Normalize DevSecOps Data to ASPM Platform
DefectDojo today added a universal parser to its application security posture management platform (ASPM) that makes it possible to normalize data ingested from any DevSecOps tools and platforms that expose data in ...
Microsoft Enlists Endor Labs to Integrate SCA Tool with CNAPP
Microsoft has tapped Endor Labs to incorporate a software composition analysis (SCA) tool into its cloud-native application protection platform (CNAPP) ...
Legit Security Adds Application Security Rating Scorecards to ASPM Platform
Legit Security today added an ability to rate the level of software security that has been attained to its application security posture management (ASPM) platform ...
Elevating DevOps Security: Why Integrating Threat Modeling Transforms Pentesting
Akhil Mittal | | application security, devops security, pentesting, Risk-based security testing, threat modelingDo not stop at compliance — embrace threat-driven pentesting and build a security posture that is ready for the real-world threats your organization faces ...
SBOM as a Cornerstone of Secure Software Development
By providing transparency into the software supply chain, an SBOM helps organizations identify and manage vulnerabilities in third-party and open-source components ...
Backslash Security Adds Simulation and Generative AI Tools to DevSecOps Platform
Backslash Security today added an ability to simulate upgrades to a higher version of an application to its application security platform for scanning code and creating software bills of materials (SBOMs) ...
Secure Code Warrior Unveils Agent to Manage Commit Permissions
Secure Code Warrior (SCW) today added an agent to its portfolio of application security that assesses the security competency of developers as they commit code to a repository ...
Ensuring Application Security from Design to Operation with DevSecOps
Alex Vakulov | | application security, devsecops, secure development, security, security testing, vulnerabilitiesSafe development is critical for any company that creates software, whether for its own use or for others. DevSecOps principles focus on automating information security processes and introducing security measures early in ...
Backslash Security Extends Reach of Application Security Platform
Making the Backslash application security platform even more secure with news of added support as well as a revamped, simpler user interface ...
No Country for No-Code: Are We Heading Towards a Wild West of Software Security?
Michael Burch | | application security, citizen developers, CVEs, Low Code, No Code, software securityThe specter of an untrained employee creating applications is alarming: No-code/low-code platforms empower employees with no application security knowledge to develop programs that security teams don’t know exist ...
JFrog Survey Surfaces Raft of DevSecOps Challenges
A JFrog survey found that 60% of IT professionals typically spend four days or more remediating application vulnerabilities in a given month ...
Cycode Acquires Bearer to Extend ASPM Platform
Cycode has acquired Bearer, a provider of a set of tools for SAST, API discovery and identification of sensitive data ...
