NTO & Coverity launch interactive application security (IAST) Are your developers effectively testing for and fixing security vulnerabilities early in the software development lifecycle (SDLC)? Coverity and NT OBJECTives recently announced the first interactive application…
We are happy to announce our partnership with Coverity and the general availability the first Interactive Application Security Testing (IAST) solution to be built on a “developer-ready” platform. With this integration, the results from NTO’s Dynamic…
SSL++; Tales of Transport Layer Security at Twitter I am happy to have attended this talk, at 2013 B-Sides San Francisco, by @jimio, a Twitter employee, on SSL security and how to create a secure…
In this new report, “The Widening Web Application Security Scanner Coverage Gap in RIA, Mobile and Web Services: Is Your Scanner like the Emperor’s New Clothes?”, Dan Kuykendall and Matthew Cohen of NT OBJECTives cover…
Few people fully appreciate the difficulty in creating a web application security scanner that can actually work well against most sites. In addition, there is much debate about how much application security testing can be…
The smell of melting Blackberries/iPhones/Droids. You have probably smelled it before. You began testing an application and forgot to blacklist the “Contact Us” page so everyone who receives an email for “Contact Us” gets pummelled…
One of the more common problems that we see is customers trying to bite off more of their application infrastructure at once than they can chew. A certain amount of planning will yield better, more…
“Laws are like sausages. It’s better not to see them being made.” - Otto von Bismarck I’m not sure how many of you have kids or how diligent they are with their homework but I’m sure you’ve…
As CEO, I’m constantly emphasizing the importance of customer support and trying to attend several support calls each week to stay on top of our support quality and what customers are asking. Surprisingly, application scan…