Top 7 Questions to Ask When Evaluating a Software Composition Analysis Solution
Software Composition Analysis software helps manage your open source components. Here are 7 questions you should ask before buying an SCA solution.
Read Article
Top 9 Code Review Tools for Clean and Secure Source Code
Read Article
Why Patch Management Is Important and How to Get It Right
Read Article
Static Application Security Testing: SAST Basics
Read Article
Application Security Testing: Security Scanning Vs. Runtime Protection
Read Article
Our Favorite Web Vulnerability Scanners
Read Article
License Compatibility: Combining Open Source Licenses
While open source licenses are free, they still come with a set of terms & conditions that users must abide by. Read why license compatibility is a major concern.
Read Article
Why You Need an Open Source Vulnerability Scanner
An open source vulnerability scanner is a tool that helps organizations identify and fix any risks associated with open source software usage. Learn all about it.
Read Article
Dynamic Application Security Testing: DAST Basics
Dynamic application security testing (DAST), or black-box testing, finds vulnerabilities by attacking an application from the outside while it's is running.
Read Article
Everything You Wanted to Know About Open Source Attribution Reports
Read Article
Does IAST Fit Into Your AppSec Program?
Interactive application security testing (IAST) works from within an application to detect and report issues while an application is running.
Read Article
July 2020 Open Source Security Vulnerabilities Snapshot
Read Article
When’s the Right Time for an Open Source Audit?
Open Source Audit. Three words which can make a big difference to the continued success of your organization?
But when is the right time to start one, and why is it so important anyhow?
Find...
Read Article
Software Development Life Cycle: Finding a Model That Works
The software development life cycle has are two main models: Waterfall and Agile. This blog identifies the phases of the SDLC and most common models.
Read Article
CI/CD and the Promise of Agile Transformation
Learn how CI/CD (continuous integration/continuous delivery) pushes frequent, incremental software updates & fixes regardless of size using automation tools.
Read Article
June 2020 Open Source Security Vulnerabilities Snapshot
Read Article
Forrester's State of Application Security, 2020: Key Takeaways
Read Article
DevSecOps vs. SecDevOps: A Rose by Any Other Name?
Read Article
Gartner 2020 Magic Quadrant for Application Security Testing: Key Takeaways
Read Article
