Everybody knows the benefits of CI in the SDLC. I’m not discovering new ground here, but what’s interesting is that you can leverage your continuous integration processes to have a continuous analysis processes to have all the objective information you need from your applications at build time with Kiuwan.
Security misconfigurations are "holes" or weaknesses within your computer applications that leave your system vulnerable to attack.
Understanding Authorization To Resolve Broken Access Control Access control (authorization) determines what users communicate with what systems and resources within your company.
How to Resolve and Prevent XSS Cross site scripting (XSS) occurs when an attacker injects malicious script, like JavaScript, into your web browser which compromises an infected web site.
Authentication and session management includes verifying user credentials and managing their active sessions.
Returning from Saturday's LechazoConf 2017, a conference about failures (and successes) of entrepreneurs/startups in Castilla-Leon (and Spain).
The Common Weakness Enumeration Initiative The Common Weakness Enumeration (CWE) is an extension of the Common Vulnerabilities and Exposures (CVE) list compiled by MITRE, a federally-funded, non-profit organization that manages research and development centers supporting government agencies like Homeland Security.
What is the OWASP Benchmark? I'm sure that most of you are familiar with
Security and Quality Indicators in Kiuwan: a practical guide Kiuwan gathers evidence from application's source code using in-house develop Kiuwan static analyzers.
There is almost an endless list of reasons why application security is important to businesses.
A common question from users that run Kiuwan in a Continuous Integration scenario is : How can i control (or be notified of) the results of the execution of Kiuwan Local Analyzer? And furthermore.