Software Integrity Blog

Archive for the 'Web Application Security' Category

 

Vandana Verma: Passionate guide for the web application security journey

Vandana Verma, security architect at IBM India Software Labs and web application security expert, shares her advice on tools, training, and shifting left.

Continue Reading...

Posted in Featured, Web Application Security | Comments Off on Vandana Verma: Passionate guide for the web application security journey

 

[Webinar] OWASP Top 10 for JavaScript Developers

The OWASP documentation doesn’t give much attention to JavaScript. This webinar explains the OWASP Top 10 in terms of JavaScript vulnerabilities.

Continue Reading...

Posted in Software Compliance, Quality & Standards, Web Application Security, Webinars | Comments Off on [Webinar] OWASP Top 10 for JavaScript Developers

 

What are the different types of security vulnerabilities?

An application security vulnerability is a security bug, flaw, error, fault, hole, or weakness in software architecture, design, code, or implementation that can be exploited by attackers. Let’s take a closer look at the different types of security vulnerabilities.

Continue Reading...

Posted in Web Application Security | Comments Off on What are the different types of security vulnerabilities?

 

Why your SAST tool needs to understand your web framework

Web frameworks can introduce security issues into web applications. Mitigate this risk with a static analysis tool that understands the frameworks you use.

Continue Reading...

Posted in Static Analysis (SAST), Web Application Security | Comments Off on Why your SAST tool needs to understand your web framework

 

The license and security risks of using Node.js

The use of Node.js is rising. But many organizations don’t know about the potential license and security risks that Node.js can pose for their applications.

Continue Reading...

Posted in Open Source Security, Web Application Security | Comments Off on The license and security risks of using Node.js

 

[Webinars] DevSecOps, JavaScript security, and automotive security

Learn how to reduce your anxiety with DevSecOps, review JavaScript security in modern applications, and improve automotive cyber security after production.

Continue Reading...

Posted in Agile, CI/CD & DevOps, Automotive Cyber Security, Web Application Security, Webinars | Comments Off on [Webinars] DevSecOps, JavaScript security, and automotive security

 

Why hackers are targeting your web apps (and how to stop them)

How do you protect your web apps from hackers? Forget firewalls. You need an AppSec toolbelt, including software composition analysis and automated testing.

Continue Reading...

Posted in Web Application Security | Comments Off on Why hackers are targeting your web apps (and how to stop them)

 

Ask the Experts: What’s the worst web application security issue?

Spoiler: There isn’t a “worst web application security issue,” because every app is unique. But these issues are a good place to start your security review.

Continue Reading...

Posted in Web Application Security | Comments Off on Ask the Experts: What’s the worst web application security issue?

 

What happens when your CISO has one of those days?

A CISO having a bad day finds out the hard way that cutting corners on software security testing might end up costing him more than he saved.

Continue Reading...

Posted in Mobile App Security, Web Application Security | Comments Off on What happens when your CISO has one of those days?

 

Web AppSec interview questions every company should ask

Preparing for a web application security interview? Here’s a thorough list of web AppSec interview questions for companies to ask and candidates to review.

Continue Reading...

Posted in Web Application Security | Comments Off on Web AppSec interview questions every company should ask