As IRS mops up data leak, years of data breaches come back to haunt

Some critics argue that the IRS should have taken preventative measures when it had the opportunity. Jeff Williams, chief technology officer at Contrast Security, says if hackers were able to figure out how to trick the IRS’ systems into thinking they were legitimate users, the tax agency should have, too.

“The IRS decided that if you know a person’s Social Security number, birthday, and street address, then you must be... 

Read More

Staying Compliant with PCI DSS Can Be Easier Than You Think

What Does PCI DSS Compliance Mean? In 2004, Visa, MasterCard, Discover, American Express, and JCB combined their minimum security standards for credit card processing together and crafted the Payment Card Industry Data Security Standard (PCI DSS). This ensured that merchants met minimum security standards when they stored, processed, and...Read More

What does Contrast mean to you?


Installs In Minutes

Contrast instrumentation works as fast as applications run and change. Unlike legacy approaches, Contrast requires no waiting for tests to complete. 

Instant identification means never an open window for attack.



No False Positives

Accurately identifies more vulnerabilities than SAST and DAST combined – so developers and AppSec folks are on the same page.

Accurate information leads to accurate findings. 


No Consultants 

Contrast is easy to install and use. So anyone can use it to do their own AppSec without the bottleneck that experts cause.

That’s simple.


Continuous Application Security Handbook

This short handbook outlines 8 steps to a streamlined approach to application security that is designed to be scalable, practical, and compatible with modern software and modern software development approaches.

Get Your Copy

Indecent Exposure Whitepaper

This paper reviews why today's application security does not work and how they failed to deliver on their promises. After reviewing some of the pitfalls of legacy application security tools and why they have failed, a new approach for securing applications will be introduced.

Download Your Copy

Interactive Application Security Testing

Webinar OnDemand 
Cybersecurity: Winning with Automation

Listen to this short video and hear Jeff Williams: 

  • Present the capabilities, strengths, and weaknesses of legacy application security tools like SAST and DAST.
  • Define IAST and RASP, Gartner’s latest appsec buzzwords and what they represent. 
  • Introduce a powerful new approach called “Security Instrumentation.”

Listen to Recording 

Named a Visionary" 

Application Security Testing Magic Quadrant


“Contrast for Eclipse presents a real opportunity... to build highly secure applications without compromising productivity”

Pieter Humphrey
Consulting Product Marketing Manager

Selected as a Top 16 Innovator

Named a Leader" 

The Forrester Wave™ Application Security