Vulnerabilities
Blind SQL Injection: How it Works, Examples and Prevention
What is Blind SQL Injection? Blind SQL injections (blind SQLi) occur when a web application is exposed to SQL injection, but its HTTP responses don’t
May 27, 2021
AppSec Blog
Application Security news, research, vulnerabilities, DevSecOps, CI/CD tooling, hacking and more
Updates
Bright Product Update – April 2021
This blog post announces the April 2021 Update for Bright. We added some new features and product enhancements that will make your experience even better.
May 24, 2021
AppSec Testing
Aggregating SCA, SAST and DAST Vulnerability Results
DevOps looks to combine the culture, methodologies and tooling of both the software development and operations teams, so companies can deliver new application features at
May 13, 2021
Updates
Bright Product Update – March 2021
This blog post announces the March 2021 Update for Bright. We added some new features and product enhancements that will make your experience even better.
April 13, 2021
AppSec Testing
Complete your AppSec testing Automation, with Bright
The shift to rapid, frequent deployments over the past decade left application security behind. However, in recent years security is starting to catch up. Leading
April 13, 2021
AppSec Testing
Using FOSSA? Complete your AppSec testing automation with Bright
As security testing is increasingly shifting left, developer focused application security testing tools are bridging the gap between engineering and security. But automated tools are
April 8, 2021
AppSec Testing
Shopping for an AppSec testing solution? Here is what to consider
Let’s face it – whether you are checking your emails, banking online , shopping for new shoes, or doing serious business, there is a very
April 6, 2021
AppSec Testing
Using Snyk? Complete your AppSec testing Automation, with Bright
Security is no longer a siloed team with sole ownership of security testing – security testing is increasingly shifting left. Instead of developers being brought
March 23, 2021
AppSec Testing
Penetration Testing Tools: 10 Tools to Supercharge Your Pentests
What are Penetration Testing Tools? Penetration testing (pentesting) is a simulated attack launched for the purpose of uncovering security vulnerabilities. A pentest helps organizations discover
February 25, 2021
How-To
Web Application Penetration Testing: A Practical Guide
What is Web Application Penetration Testing? Web application penetration testing, also known as pentesting, simulates attacks against your web applications, to help you identify security
February 25, 2021
AppSec Testing
Penetration Testing Services: Manual or Automated?
What are Penetration Testing Services? Penetration testing (also called pentesting) is a controlled attempt to breach IT systems. Penetration testing is performed on behalf of
February 24, 2021
News
Welcoming Industry Veterans to Our Newly-Formed Board
I’m thrilled to announce our newly-formed industry advisory board and welcome to it two luminaries of the industry, each bringing their own unique perspective. They
February 18, 2021
Vulnerabilities
CSRF Attacks: Real Life Attacks and Code Walkthrough
What is CSRF Attack? Cross-Site Request Forgery (CSRF) attacks execute unauthorized actions on web applications, via an authenticated end-user’s connection. Threat actors typically use social
February 17, 2021
AppSec Testing
What is the most Important feature of your DAST Tool?
If you’re anything like me, you’re already thinking about what you might want for Christmas (or Chanukah, or Eid – other High Holy days are
February 11, 2021
AppSec Testing
How often are you testing for Application vulnerabilities?
Whether you are just starting your DevOps journey, or are fine tuning your processes as you mature, with CI/CD and easy deployment of new microservices,
January 27, 2021
© 2022 Bright Security Inc. All Rights Reserved