- Securing Web Apps in a DevOps World (Notes From Black Hat 2017)
Zane Lackey of Signal Sciences spoke at Black Hat 2017 on a topic near and dear to my heart: Practical Tips for Defending Web Applications in the Age of DevOps. DevOps — and really, any Agile or Agile-like rapid software development approach — is a huge enabler for business. Changes to software are envisioned, implemented, tested, and deployed incredibly fast. Deployments can happen multiple… READ MORE
Stay up to date on Application Security
- An Introduction To Responsive AppSecJuly 8, 2015
I recently gave a webinar wherein I discussed the concept of Responsive AppSec—the idea that development teams can improve the security quality of their software through a developer-focused Application Security (AppSec) Program that's built to respond quickly to their needs and the needs of their customers and other stakeholders through collaboration, taking ownership, and aggressive… READ MORE
Robert Lemos has an excellent summary of the state of the debate on disclosure of exploit code in his column at Dark Reading. In it, I’m quoted briefly: Software vulnerabilities are often discovered independently, suggesting that silencing the disclosure of a vulnerability and how to exploit the flaw would merely allow a bad actor more time to use an attack, says Darren Meyer, senior security… READ MORE
Application Security Tool Kit
Love to learn about Application Security?
Get all the latest news, tips and articles delivered right to your inbox.
No thanks, back to the article please.