First and foremost, if you’re implementing DevSecOps in the DoD, kudos to you for taking initiative. DevSecOps is enabling the Department to develop quickly and securely, so organizations can continuously meet critical and urgent needs of the warfighter. It’s a dramatic change from waterfall development, where the actual problem largely ... Read More

Whether you’re researching SAST, DAST, SCA, RASP, one thing is for certain: eventually it all starts to blur into a game of anagram. If you’re struggling to understand how to get your application security testing program off the ground, you wouldn’t be the first. Find comfort in knowing that this ... Read More

Whether you’re researching SAST, DAST, SCA, RASP, one thing is for certain: eventually it all starts to blur into a game of anagram. If you’re struggling to understand how to get your application security testing program off the ground, you wouldn’t be the first. Find comfort in knowing that this ... Read More

The AI Movies Were (Kind Of) Right. I hold on tightly to my hyperbolic belief that all hacker and AI movies are destined to be horrible (Sorry Chris Hemsworth!). The plots are always unbearable, perpetuating the far fetched notion that computers will eventually run our lives into destruction ... Read More

The AI Movies Were (Kind Of) Right. I hold on tightly to my hyperbolic belief that all hacker and AI movies are destined to be horrible (Sorry Chris Hemsworth!). The plots are always unbearable, perpetuating the far fetched notion that computers will eventually run our lives into destruction ... Read More

Across ForAllSecure’s community engagements, a consistent request we’ve received is for more educational material and general resources around fuzz testing. Although we’ve launched live and digital events and content such as FuzzCon , FuzzCon TV , The Hacker Mind , Chief Product Security Counsel, and Federal Software Security and Assurance ... Read More

Across ForAllSecure’s community engagements, a consistent request we’ve received is for more educational material and general resources around fuzz testing. Although we’ve launched live and digital events and content such as FuzzCon , FuzzCon TV , The Hacker Mind , Chief Product Security Counsel, and Federal Software Security and Assurance ... Read More

On February 12, 2021, ForAllSecure CEO Dr. David Brumley joined Cloudflare’s Head of Product Security, Evan Johnson, to discuss all things software security, fuzz testing, capture-the-flags (CTFs), and cybersecurity certifications. Missed the episode? You’re in luck. A replay of the episode is available here: https://cloudflare.tv/event/42ZANWDPdZQeco5OqVyf32 We’ve also outlined below the ... Read More

On February 12, 2021, ForAllSecure CEO Dr. David Brumley joined Cloudflare’s Head of Product Security, Evan Johnson, to discuss all things software security, fuzz testing, capture-the-flags (CTFs), and cybersecurity certifications. Missed the episode? You’re in luck. A replay of the episode is available here: https://cloudflare.tv/event/42ZANWDPdZQeco5OqVyf32 We’ve also outlined below the ... Read More

The To All The Tools I’ve Loved Before series reaffirmed that there’s true love still out there. How are Your Apps and Mayhem doing you ask? Find out in this sequel and final installment ... Read More