As IRS mops up data leak, years of data breaches come back to haunt

Some critics argue that the IRS should have taken preventative measures when it had the opportunity. Jeff Williams, chief technology officer at Contrast Security, says if hackers were able to figure out how to trick the IRS’ systems into thinking they were legitimate users, the tax agency should have, too.

“The IRS decided that if you know a person’s Social Security number, birthday, and street address, then you must be... 

Read More

I understand SAST and DAST and how to use them, but what is an IAST and why does it matter?

Quick Review Of Application Security Testing When I attend social functions with friends people often ask what I do. I'm never quite sure where to start. "I run a small tech company that helps Java applications run more securely" is probably overkill. "I help keep hackers out of proprietary places" has worked. But usually, I just default to asking...Read More

What does Contrast mean to you?

Fast

Installs In Minutes

Contrast instrumentation works as fast as applications run and change. Unlike legacy approaches, Contrast requires no waiting for tests to complete. 

Instant identification means never an open window for attack.

 

Accurate

No False Positives

Accurately identifies more vulnerabilities than SAST and DAST combined – so developers and AppSec folks are on the same page.

Accurate information leads to accurate findings. 

Easy

No Consultants 

Contrast is easy to install and use. So anyone can use it to do their own AppSec without the bottleneck that experts cause.

That’s simple.

 

Continuous Application Security Handbook

This short handbook outlines 8 steps to a streamlined approach to application security that is designed to be scalable, practical, and compatible with modern software and modern software development approaches.

Get Your Copy

Indecent Exposure Whitepaper

This paper reviews why today's application security does not work and how they failed to deliver on their promises. After reviewing some of the pitfalls of legacy application security tools and why they have failed, a new approach for securing applications will be introduced.

Download Your Copy

Interactive Application Security Testing
placeholder.jpg

Webinar OnDemand 
Cybersecurity: Winning with Automation

Listen to this short video and hear Jeff Williams: 

  • Present the capabilities, strengths, and weaknesses of legacy application security tools like SAST and DAST.
  • Define IAST and RASP, Gartner’s latest appsec buzzwords and what they represent. 
  • Introduce a powerful new approach called “Security Instrumentation.”

Listen to Recording 

gartner
Named a Visionary" 

Application Security Testing Magic Quadrant

 

oracle
“Contrast for Eclipse presents a real opportunity... to build highly secure applications without compromising productivity”

Pieter Humphrey
Consulting Product Marketing Manager

SINET 16
Selected as a Top 16 Innovator

Forrester
Named a Leader" 

The Forrester Wave™ Application Security