Securing the Kubernetes cluster
Explore common security best practices to ensure that your Kubernetes cluster is properly secured.
Application security
How to run a software composition analysis tool
Learn the pros and cons of software composition analysis (SCA) and how it can help protect your application from attacks.
How to run a SAST (static application security test): tips & tools
Learn the pros and cons of static application security testing (SAST) and how it can help protect your application from attacks.
How to run an interactive application security test (IAST): Tips & tools
Learn the pros and cons of interactive application security testing (IAST) and how it can help protect your application from attacks.
How to run a dynamic application security test (DAST): Tips & tools
Learn the pros and cons of dynamic application security testing (DAST) and how it can help protect your application from attacks.
Introduction to Kubernetes security
Get an overview of Kubernetes security, including Kubernetes architecture, control plane components, worker node components and more.
Key findings from ESG’s Modern Application Development Security report
In August 2020, the Enterprise Strategy Group (ESG) published its report, “Modern Application Development Security.” ESG is a company specialized in IT-related...
Microsoft’s Project OneFuzz Framework with Azure: Overview and concerns
In September 2020, the Microsoft Security Team announced that Microsoft’s new open-source fuzzing platform, Project OneFuzz, was available as an open-source...
Software maturity models for AppSec initiatives
Software is on the front lines of security: a 2019 report from GitLab found that almost half of respondents deploy software on-demand or multiple times per...
Best free and open source SQL injection tools [updated 2021]
SQL injection is one of the most common attacks against web applications. This is used against websites which use SQL to query data from the database server....