AppSec Blog

Application Security news, research, vulnerabilities, DevSecOps, CI/CD tooling, hacking and more

AppSec Testing

Black-Box Penetration Testing: Pros and Cons

What is Black-Box Penetration Testing? The term black-box penetration testing (pentesting) refers to external tests aimed at identifying vulnerabilities in systems, applications, or networks. Unlike

DevSecOps
AppSec Testing

What Is DevSecOps? Adding Security to the SDLC

DevSecOps is a strategic approach that unites development, security, operations, and infrastructure as code (IaaS) in a continuous and automated delivery cycle.  DevSecOps aims to

Updates

Bright Product Update – November 2021

This blog post announces the November 2021 Update for Bright.We added some new features and product enhancements that will make your experience even better. New

Vulnerabilities

SQL Injection in Java and how to easily prevent it

Java developers have a rich ecosystem available to them, including robust application frameworks and proven Object-Relational Mapping (ORM). Unfortunately, frameworks and ORMs aren’t enough to

Updates

Bright Product Update – October 2021

This blog post announces the October 2021 Update for Bright.We added some new features and product enhancements that will make your experience even better. Don’t

AppSec Testing

Top 6 API Security Testing Tools and How to Choose

What Is API Security Testing? Application Programming Interfaces (APIs) enable communication between applications and services. API misconfigurations and vulnerabilities can expose data. Threat actors exploit

Updates

Bright Product Update – September 2021

This blog post announces the September 2021 Update for Bright.We added some new features and product enhancements that will make your experience even better. New

Join our workshop: JavaScript Global Summit’22