Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics
    Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

    Eating Our Own Cooking at Contrast: Securing and Protecting TeamServer

    It’s very rare that one has an opportunity to experience the development of a major software solution from the ground..

    Contrast Receives 4.8/5.0 in 2020 Gartner Peer Insights ‘Voice of the Customer’: AST Customers’ Choice

    Contrast Receives 4.8/5.0 in 2020 Gartner Peer Insights ‘Voice of the Customer’: AST Customers’ Choice

    Technology companies that fail at delivering unparalleled customer experiences and demonstrating business value simply..

    85% of Developers in the Technology Industry Deploy Daily, Yet 8 in 10 Aren’t Going Fast Enough

    85% of Developers in the Technology Industry Deploy Daily, Yet 8 in 10 Aren’t Going Fast Enough

    Organizations aspire to reach perfection and often look to emulate best practices of peer organizations to do so. When..

    Authenticated Remote Code Execution in OpenMRS

    Authenticated Remote Code Execution in OpenMRS

    Early in May of 2020, Contrast Labs was exploring different ways in which we could help the community or world combat..

    XML External Entity (XXE) Attack Vulnerability and JAXB Pitfalls

    XML External Entity (XXE) Attack Vulnerability and JAXB Pitfalls

    The Java XML Binding (JAXB) runtime that ships with OpenJDK 1.8 uses a default configuration that protects against XML..

    Contrast Labs: Blocking Spring View Manipulation Attacks

    Contrast Labs: Blocking Spring View Manipulation Attacks

    security-observability

    WHY OBSERVABILITY IS THE NEXT BIG THING IN SECURITY

    Accelerate cloud migrations with security observability across your development life cycle.

    Apache Struts CVE-2019-0230 Vulnerabilities and How to Block Attacks

    Apache Struts CVE-2019-0230 Vulnerabilities and How to Block Attacks

    Note: Special thanks to Alvaro Muñoz (https://twitter.com/pwntester) for correcting us on some very important technical..

    Contrast Application Security Platform Accepted Into Department of Defense Platform One

    Contrast Application Security Platform Accepted Into Department of Defense Platform One

    The U.S. Department of Defense (DoD) takes cybersecurity to new levels. Platform One, a program based out of the U.S...