What Is Your API Attack Surface
The proliferation of APIs today is astonishing. According to a recent report, the number of active APIs will approach 1.7 billion by 2030. ..
What Are Control Flow Statements?
Control flows are the backbone of automation. Identifying what to do with a set of data – and how – is a key component of high-value ..
APIs Are Great – But Only If You Manage API Sprawl and Security Risks
If you had to find an analogy for the explosive growth of APIs over the past decade, you might choose to compare them to cell phones. Like ..
An Introduction to Automation Basics
Automation is a powerful tool. With some foresight and a little elbow grease, you can save hours, days, or even months of work by strategically ..
Considerations and Steps for Adopting Managed AppSec Security Tests
At least, that’s one question you may be asking yourself if you’re trying to decide how to optimize your business’s approach to application ..
JSON Basics: Building Blocks for Workflow Automation
Automation workflows add a lot of value to an organization’s day-to-day operations. At a minimum, they streamline the execution of complex, ..
A Beginner’s Guide to Android App Testing
Android is, by far and away, the world’s most popular mobile operating system. Its global market share across mobile devices of all types ..
A Beginner’s Guide to iOS App Testing
What Is iOS App Testing? iOS app testing is the process by which an iOS application is tested on Apple devices like iPhone and iPad. The goal ..
Key Considerations for Building a Proper AppSec Program for Modern Application Development
Many firms’ security efforts are focused solely on deploying technologies, applying “best practices,” and responding to a never-ending ..
Best Practices to Collect, Customize and Centralize Node.js Logs
Node.js is an established platform for developing server-side applications in JavaScript. One of the most fundamental concerns that arise ..
4 Database Access-Control Methods to Automate
This post was previously published on The New Stack. Regardless of which role a person has in an organization, they will always need access ..
The Case for Outsourcing AppSec Testing to a Managed Service Provider
Businesses commonly turn to managed service providers to help handle IT processes like data backup and recovery, network management, and mobility ..
Automated Security Alert Remediation: A Closer Look
This post was previously published on The New Stack. In cloud-native organizations and software as a service (SaaS) businesses, cloud security ..
5 Ways Automated Incident Response Reduces Toil
This post was previously published on The New Stack. Toil — endless, exhausting work that yields little value in DevOps and site reliability ..
Understanding the Development Best Practices Landscape for Modern Secure Application Development
Modern Application Development (MAD) is an approach to developing software applications using cloud-native technologies. The main idea ..
Automated Threat Hunting: A Closer Look
This post was previously published on The New Stack. Proactively finding and eliminating advanced threats through threat hunting is a growing ..
What Is Identity Lifecycle Management?
This post was previously published on The New Stack. If you help to manage cloud environments, you’re probably familiar with the concept ..
Seamlessly Secure Your Cloud Workloads
This post was previously published on The New Stack You’ve secured your cloud identities. You’ve hardened your cloud security posture. ..
The Top Tools for AWS Observability
LEARNING OBJECTIVES Learn about the different observability tools provided by AWS Learn about how third-party tools can provide value to an AWS observability ..
Modern Security Operations Center Framework
This post was previously published on The New Stack. The Origins of Modern Cloud/IT Environments With agile development, the software development ..