AppSec Blog

Application Security news, research, vulnerabilities, DevSecOps, CI/CD tooling, hacking and more

devops testing banner
AppSec Testing

DevOps Testing: The Basics and 5 Best Practices

What Is DevOps Testing? DevOps is a methodology promoting close communication and cooperation between development and operations teams. Implementing DevOps requires adopting certain tools and

AppSec Testing

What is Penetration Testing as a Service (PTaaS)?

Organizations are under constant threat from a wide variety of vulnerabilities. Security professionals can be slow to identify and remediate vulnerabilities in software and IT

AppSec Testing

Black-Box Penetration Testing: Pros and Cons

What is Black-Box Penetration Testing? The term black-box penetration testing (pentesting) refers to external tests aimed at identifying vulnerabilities in systems, applications, or networks. Unlike

DevSecOps
AppSec Testing

What Is DevSecOps? Adding Security to the SDLC

DevSecOps is a strategic approach that unites development, security, operations, and infrastructure as code (IaaS) in a continuous and automated delivery cycle.  DevSecOps aims to

Updates

Bright Product Update – November 2021

This blog post announces the November 2021 Update for Bright.We added some new features and product enhancements that will make your experience even better. New

Vulnerabilities

SQL Injection in Java and how to easily prevent it

Java developers have a rich ecosystem available to them, including robust application frameworks and proven Object-Relational Mapping (ORM). Unfortunately, frameworks and ORMs aren’t enough to

Updates

Bright Product Update – October 2021

This blog post announces the October 2021 Update for Bright.We added some new features and product enhancements that will make your experience even better. Don’t