Skip to content

AppSec Observer

The latest trends and tips in DevSecOps through instrumentation and security observability. Learn about real-world insight and “in-the-trenches” experiences on topics ranging from application and information security to DevOps and risk management.

Subscribe to Blog
Contrast Serverless scans AWS Lambdas as containers

Contrast Serverless scans AWS Lambdas as containers

Contrast Security’s Serverless helps you to find and fix security issues on AWS Lambda functions deployed as..

Why API security testing is crucial

Why API security testing is crucial

Application programming interfaces (APIs) allow businesses to package their internal resources and make them accessible..

Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 11/11

Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 11/11

Insight #1 " DeimosC2 will replace Cobalt Strike as the dominant C2 framework.   Find it before it finds you."  ..

How to configure a Ruby agent with Contrast in 5 minutes

How to configure a Ruby agent with Contrast in 5 minutes

An agent is a Contrast tool for application monitoring. Agents monitor, recording security data and the status of the..

Brand protection in an era of island hopping

Brand protection in an era of island hopping

How many vulnerabilities are lurking, ready to boobytrap your apps and lay your brand open to exploitation by hackers?..

What are message queues?

What are message queues?

Many significant concerns arise while developing modern-day applications in the cloud, including uptime, geographic..

Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 11/4

Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 11/4

Insight #1 " The game has changed, today's cybercrime cartels want to hijack your digital transformation and use it to..

How to protect against CVE-2022-42889

How to protect against CVE-2022-42889

A new Common Vulnerability and Exposure (CVE) — CVE-2022-42889, aka Text4Shell — was recently released, adding to the..

OMB M-22-18: Get ready for grilling

OMB M-22-18: Get ready for grilling

Do you swear to tell the truth about your secure software development, the whole truth and nothing but the truth?