Bleeping Computer

Traditional Pen Testing vs. PTaaS with Web Application Security

While traditional penetration testing (pen testing) has long been the go-to method for identifying security gaps in a organization’s network and web application, a new approach has emerged: ...
Bleeping Computer

The OWASP Top 10: What They Are and How to Test Them

Web applications often handle vast amounts of data, from personal user details to sensitive corporate information. As these applications grow in complexity and importance, they also become primary ...
CSOonline

10 penetration testing tools the pros use

Penetration testing, or pentesting, times have certainly changed. Years ago, when this speciality in offensive security was taking off, there was a large shift away from manual techniques to relying ...
Computerworld

Web application security and Sarbanes-Oxley compliance

Achieving Sarbanes-Oxley (SOX) compliance is not impossible, but there are a few key elements beyond ethical leadership that are necessary to achieve and maintain it. Public corporations must ...
CSOonline

The state of application security: What the statistics tell us

Companies are moving toward a DevSecOps approach to application development, but problems remain with security testing ownership and open-source code vulnerabilities. Credit: kristina flour; modified ...