SecurityTrails Blog
What is OWASP? Top 10 Web Application Security Risks
Software development is an imperative for a world where everyone and everything is connected to the internet, as well as for modern business. Now we have apps for everything, and with the expansion of IoT and the fast-paced app market, businesses are rushing into the race, to be the first to release new software.
Top 5 Best InfoSec and Cybersecurity Certifications to Further Your Career
Predictions show us that by just 2021, there will be more than 3 million unfilled cybersecurity positions. It’s not a secret that organizations are, now more than ever, facing challenges when it comes to forming and staffing their cybersecurity teams, and data regarding the notorious skills gap further supports that as it shows a need for cybersecurity workforce increase of 145%.
A game changer technology - Quantum Security Series - Part 1
It’s 3 a.m. and there’s an odd latency increase that lags all your web services. Your cloud provider says “it’s all good”, your Internet Service Provider has no obvious issues, but something is wrong with the path… then after 15 minutes your entire traffic suddenly and magically returns to normal, latency dropped and somehow there wasn’t any service disruption.
Jok3r: A Framework for Automated Network and Web Penetration Testing
The use of tools is important in every industry. Finance professionals use spreadsheets and graphing tools to gather and visualize data. Software developers use a wide range of tools to create websites and applications.
APT Security: What Are Advanced Persistent Threats?
In November 2014, Sony Pictures publicly disclosed that their systems had been breached, and that large amounts of internal corporate data—including executive emails, the personal information of past and present employees, and previously unreleased movies—were made available for illegal download.
Is Your Company Part of a Scam Campaign? (Zoom Showcase)
“Our team was working like any regular day, drinking some coffee, checking emails, answering tickets, when suddenly a stunning bell noise was heard and a red alarm popped out in our dashboard… the AI-based script we launched last week detected several suspicious domain names being registered that looked very similar to ours…”
What is a Security Operations Center (SOC)?
Organizations have found different ways to effectively protect their infrastructure against cyber attacks. Some standard cybersecurity practices involve firewalls, antimalware software and endpoint security tools, but many of these commonly used techniques are simply not enough to make you invulnerable. Not in the current threat landscape, anyway.
What is an Attack Vector?
Hacked systems and data breach incidents are among the worst problems many companies face every day. Even the most brilliant of IT companies will suffer cyberattacks sooner or later.
Builders vs Breakers: Bridging the gap Between Software Development and InfoSec with Tanya Janca
Application security testing and assessment commonly occurs toward the end of the standard software development life cycle (SDLC). During this time, code reviews and penetration tests are done to ensure no security flaws or bugs are found in the application before it moves on to production. As much...
OWASP Amass: A Solid Information Gathering Tool
Throughout history, human beings have crafted tools as a way to improve people’s lives. From stone hammers to metal knives, through advancements from rudimentary medical instruments to breakthroughs made with industrial steam machinery.