AppSec Observer: Contrast Assess

Contrast Labs: Apache Struts CVE-2020-17530

On December 8, 2020, Apache published a security bulletin providing details for CVE-2020-17530, a forced double..

Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

It’s very rare that one has an opportunity to experience the development of a major software solution from the ground..

Legacy SAST and the Fallacy of 100% Code Coverage

In October of 2019, three months into my tenure at Contrast Security, I received a challenge question from a customer..

What You Need to Know About the New IAST and RASP Guidelines in NIST 800-53

Route Intelligence™ Enables Transformation of Traditional Application Security Testing

Route Intelligence™ transforms AppSec testing by providing comprehensive visibility of the entire application attack..

4 Reasons to Automate Security Testing with AppSec Instrumentation

While the idea of “automation” may seem like a modern concept, it dates back to around 762 B.C. when the concept was..

Why Application Flow Maps Are the Coolest Feature in Application Security

Application flow maps are the cool feature you can use to discover that needle in a haystack—how does my running app..

Elite Performers Choose Simpler Tools

I was fascinated to read this year’s Accelerate State of DevOps Report 2019 which now represents six years of research..

Coalfire PCI Compliance & Contrast Security

Contrast Assess and Protect recently went through an independent evaluation by CoalFire, a respected Payment Card..