Blog | ReversingLabs | application security

application security

September 4, 2024

Secure by Demand: Going Beyond Questionnaires and SBOMs

Enterprise buyers need direct, verifiable evidence of software security. Here's why your organization needs to trust, but verify.

September 26, 2023

EPSS vs. CVSS: Exploit prediction could move the needle on software risk

EPSS vs CVSS: Will the Exploit Prediction Scoring System improve application security now — and software supply chain security in the future?

August 8, 2023

Do you trust your software? Why verification matters

To manage risk, you need to trust your software — and that requires verification, provided by using modern tools and taking a holistic approach.

August 2, 2023

FraudGPT/WormGPT: Scammy for now — but a worrying signpost for software security

Your app sec team should factor in more capable malicious AI tools, coming soon.

August 1, 2023

Rust progress: New threat modeling, tools bolster programming language

Here's why the Rust Foundation Security Initiative's audit and resulting new tooling matter for secure coding — and software supply chain security.

July 19, 2023

Safe programming languages: A solid first step for application security

Safe programming languages and packages can dramatically reduce vulnerabilities. Here's my rundown on the safest bets for secure coding.

July 11, 2023

EU-US data transfers back in hotseat: Security of user data adds to privacy concerns

Privacy of user data is one thing, but security of that data is equally important.

July 10, 2023

Third-party risk management survey: Prioritize end-to-end software supply chain security — or fail

Here's what you need to know about third-party risk management — and why to prioritize comprehensive supply chain security.

July 5, 2023

Here’s MITRE’s top-25 CWE list — with your old vulnerability category favorites

C’mon, dev teams — it's about time to get serious about memory safety, XSS and SQLi.

March 1, 2023

3 reasons to upgrade your AppSec testing to tackle supply chain security

Modern software development practices are a primary target for software supply chain attacks. Here's why traditional application security tools alone are not enough to mitigate these new risks

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

application security

Secure by Demand: Going Beyond Questionnaires and SBOMs

EPSS vs. CVSS: Exploit prediction could move the needle on software risk

Do you trust your software? Why verification matters

FraudGPT/WormGPT: Scammy for now — but a worrying signpost for software security

Rust progress: New threat modeling, tools bolster programming language

Safe programming languages: A solid first step for application security

EU-US data transfers back in hotseat: Security of user data adds to privacy concerns

Third-party risk management survey: Prioritize end-to-end software supply chain security — or fail

Here’s MITRE’s top-25 CWE list — with your old vulnerability category favorites

3 reasons to upgrade your AppSec testing to tackle supply chain security

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

application security

Topics

Follow us

Subscribe

Special Reports