Never mind the buzzwords: Here’s the straight deal on application security

The shifting tides of security hype and buzzwords move with the seasons, yet the fundamental challenges remain the same. We sat down with seasoned CTOs Ken Schirrmacher of Park ‘N Fly and Frank Catucci of Invicti Security to discuss best practices for web application and API security, roughing up more than one security buzzword along the way.

Never mind the buzzwords: Here’s the straight deal on application security

Looking for the best in DAST: How to select DAST tools for DevSecOps

SolarWinds, the SEC, and the CISO: Who is legally responsible for security?

An abundance of caution: Why the curl buffer overflow is not the next Log4Shell

Rapid Reset HTTP/2 vulnerability: When streaming leads to flooding

Top 5 application security misconfigurations

Hacking the hackers: Borrowing good habits from bad actors

NIST Cybersecurity Framework gets user-friendly: Upcoming changes in CSF v2.0

Surviving the API apocalypse: How to defeat zombie APIs

PCI DSS v4.0 makes integrated application security a compliance requirement

DAST tools are only as good as their setup and support

5 fundamental differences between DAST and penetration testing

Invicti Insights: Experiences and lessons learned from Black Hat USA 2023