Skip to content

AppSec Observer

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now
    Topics

    AppSec-related Must-do Activities and Sessions at RSA 2020

    This year’s theme at RSA Conference 2020 is the Human Element. Fundamentally, what those of us do in the realm of..

    4 Reasons to Automate Security Testing with AppSec Instrumentation

    While the idea of “automation” may seem like a modern concept, it dates back to around 762 B.C. when the concept was..

    How I Made $600 in Bug Bounty in 15 Minutes with Contrast CE – CVE- 2019-8442

    How I Made $600 in Bug Bounty in 15 Minutes with Contrast CE – CVE- 2019-8442

    We live in a dynamic economy that is constantly developing new ways to generate revenue. An area that fascinates me are..

    Public WiFi is actually still pretty dangerous

    I wanted to write a short response to an article EFF posted, Why Public Wi-Fi is a Lot Safer Than You Think. It's no..

    DECEMBER 2019 AppSec Intelligence Report

    DECEMBER 2019 AppSec Intelligence Report

    This report summarizes Contrast Labs' analysis of real world application attack and vulnerability data from December..

    RASP vs. WAF Comparison in Application Security

    RASP vs. WAF Comparison in Application Security

    One thing that you learn in the technology space is that change is constant. Companies, solutions, and people who sit..

    Contrast Security - Application Flow Map

    Why Application Flow Maps Are the Coolest Feature in Application Security

    Application flow maps are the cool feature you can use to discover that needle in a haystack—how does my running app..

    November 2019 AppSec Intelligence Report

    This report summarizes Contrast Labs' analysis of real world application attack and vulnerability data from November..

    Why Blue Teams Need RASP: Continuous Application Threat Monitoring with Runtime Exploit Prevention

    Runtime Application Self-Protection (RASP) adds threat visibility and security control to application runtimes so you..