Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    7 AppSec predictions for 2023

    7 AppSec predictions for 2023

    Cybersecurity mayhem is looming in the new year: Contrast Security’s SVP of Cyber Strategy Tom Kellermann is predicting..

    Contrast discovers zero-day flaw in popular Quarkus Java framework

    Contrast discovers zero-day flaw in popular Quarkus Java framework

    While preparing a talk for the recent DeepSec Conference about attacking the developer environment through drive-by..

    Cybersecurity Insights with Contrast CISO David Lindner | 11/25

    Cybersecurity Insights with Contrast CISO David Lindner | 11/25

    Insight #1 " The recent FTX and Twitter debacles should really have people thinking about the security and privacy of..

    Fall lawn cleanup – AppSec style

    Fall lawn cleanup – AppSec style

    Every year toward the end of September, I get anxious about the falling leaves. This year, I applied my Application..

    Cybersecurity Insights with Contrast Co-founder and CTO Jeff Williams | 11/18

    Cybersecurity Insights with Contrast Co-founder and CTO Jeff Williams | 11/18

    Insight #1 " Feds continue to push aggressive timelines for requiring app/API security “attestations” from software..

    Your cybersecurity mission: To defend from within

    Your cybersecurity mission: To defend from within

    Traditional network security and endpoint security have failed.

    Why API security testing is crucial

    Why API security testing is crucial

    Application programming interfaces (APIs) allow businesses to package their internal resources and make them accessible..

    Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 11/11

    Cybersecurity Insights with Contrast SVP of Cyber Strategy Tom Kellermann | 11/11

    Insight #1 " DeimosC2 will replace Cobalt Strike as the dominant C2 framework. Find it before it finds you." Insight #2..

    How to configure a Ruby agent with Contrast in 5 minutes

    How to configure a Ruby agent with Contrast in 5 minutes

    An agent is a Contrast tool for application monitoring. Agents monitor, recording security data and the status of the..