Tag Archives: application security

Author, Matthew Barker

When it Comes to Application Security, “Doing Your Homework”​ Matters

When it Comes to Application Security, “Doing Your Homework”​ Matters

They say software is eating the world, very true, but it has become even more clear that OSS components are eating the software world. This amazing revolution is driving unimagined gains in innovation and efficiency in our ability to deliver software. Think Uber, here is a new leader in the transportation industry without owning a

WebGoat Project - Featured Image

2016 AppSec USA – An Update on the WebGoat Project

WebGoat is a deliberately insecure web application maintained by OWASP designed to teach web application security lessons. It is one of the most used projects at OWASP. With the current team headed by Bruce Mayhew, Nanne Baars and Jason White, work is moving forward on the creation of new content for creating training lessons for

Core Rules Project - Chaim Sanders

AppSec USA 2016: Core Rule Set Project Update w/ Chaim Sanders [AUDIO]

The OWASP ModSecurity Core Rule Set Project‘s goal is to provide an easily “pluggable” set of generic attack detection rules that provide a base level of protection for any web application. Chaim Sanders,Ryan Barnett, Christian Folini and Walter Hop are the team coordinating the project. During 2016 AppSec USA, I spoke with Chaim Sanders about

Andrew van der Stock

OWASP Application Security Verification Standard Project w/ Andrew van der Stock [PODCAST]

The OWASP Application Security Verification Standard (ASVS) Project provides a basis for testing web application technical security controls. The primary aim of the OWASP ASVS Project is to normalize the range in the coverage and level of rigor available in the market when it comes to performing Web application security verification using a commercially-workable open

Author, Derek Weeks

The Cost to DevOps: 27 Mufflers

  Imagine Imagine that you are designing the 2016 Range Rover line of sport utility vehicles.  Like all gas powered vehicles, each one needs an exhaust muffler.  Range Rover likely has narrowed in on a preferred provider of mufflers. But imagine what would happen if the designers and factory line workers could pick from any

Author, Derek Weeks

Better and Fewer Suppliers (2015 Software Supply Chain Report)

  That Supplier is Better For You Since releasing the 2015 State of the Software Supply Chain Report, there has been a lot of great discussion across the industry on best practices for managing the complexity introduced by the volume and velocity of the components used across your software supply chain. Today I want to focus

Top