Skip to content

AppSec Observer: Contrast Assess

The latest trends and tips in DevSecOps through instrumentation and security observability. Learn about real-world insight and “in-the-trenches” experiences on topics ranging from application and information security to DevOps and risk management.

Subscribe to Blog
Contrast Labs: Apache Struts CVE-2020-17530

Contrast Labs: Apache Struts CVE-2020-17530

On December 8, 2020, Apache published a security bulletin providing details for CVE-2020-17530, a forced double..

Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

It’s very rare that one has an opportunity to experience the development of a major software solution from the ground..

Legacy SAST and the Fallacy of 100% Code Coverage

Legacy SAST and the Fallacy of 100% Code Coverage

In October of 2019, three months into my tenure at Contrast Security, I received a challenge question from a customer..

What You Need to Know About the New IAST and RASP Guidelines in NIST 800-53

What You Need to Know About the New IAST and RASP Guidelines in NIST 800-53

 

Route Intelligence™ Enables Transformation of Traditional Application Security Testing

Route Intelligence™ transforms AppSec testing by providing comprehensive visibility of the entire application attack..

4 Reasons to Automate Security Testing with AppSec Instrumentation

While the idea of “automation” may seem like a modern concept, it dates back to around 762 B.C. when the concept was..

Contrast Security - Application Flow Map

Why Application Flow Maps Are the Coolest Feature in Application Security

Application flow maps are the cool feature you can use to discover that needle in a haystack—how does my running app..

Elite Performers CHoose Simpler Tools

Elite Performers Choose Simpler Tools

I was fascinated to read this year’s   Accelerate State of DevOps Report 2019  which now represents six years of..

Coalfire PCI Compliance & Contrast Security

Contrast Assess and Protect recently went through an independent evaluation by CoalFire, a respected Payment Card..