Beating the AppSec Bottleneck
An article by Ken Prole, CTO of Code Dx, was published in the Security Today magazine’s April 2019 edition.
Each SAST tool only discovers about 14% of the vulnerabilities in your code
An essential element of the application development process is scanning the software to find potential vulnerabilities. Static Application Security Testing tools are notorious for returning lots of results (often thousands, even for relatively small applications), which can overwhelm a developer. But no matter how they feel about the results, software developers must understand that by running only one application security testing tool—even the best on the market—they are missing most of the weaknesses in their code.
Hybrid Application Security Testing (HAST)
Both Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) share a common goal—finding security vulnerabilities in an application. Both are an important part of a comprehensive application security process, but the perspectives and...Code Dx will be at the AppSec Conference in California
Vincent Hopson, Field Applications Engineer at Code Dx, will discuss how web application penetration testers can improve the efficiency and comprehensiveness of their white box testing using two new open source OWASP tools; Code Pulse and Attack Surface Detector.
Predicted web application vulnerabilities and cybersecurity trends for 2019
Web application attacks are on the rise. A recent study found that they were the primary cause of reported breaches in 2017 and Q1 2018. This marked increase is partly due to the greater variety in web application vulnerabilities, as new attack vectors are found and exploited.
Code Dx Enterprise Selected by the Joint Federated Assurance Center to Secure DoD Software
Code Dx, Inc. today announced that the Jointed Federated Assurance Center (JFAC) has selected Code Dx Enterprise as an application correlation and vulnerability management solution to help Department of Defense (DoD) agencies protect their software.
Code Dx Enterprise Recognized with Platinum ASTORS Homeland Security Award
Code Dx Enterprise won a Platinum American Security Today ASTORS Homeland Security Award. Code Dx was awarded top honors in the “Best Cyber Code & Auditing Solution” category at the award presentation luncheon on November 14. Code Dx was also a recipient of an ASTORS Award in 2017.
Code Dx Enterprise Now Offers Innovative New Dashboard Providing Complete AppSec Visualization
Code Dx, Inc., today announced that Code Dx Enterprise has won the CyberSecurity Breakthrough Award for the Vulnerability Management Solutions of the Year. CyberSecurity Breakthrough Award recognizes excellence in information security and cybersecurity technology companies, products and people.
Code Dx exhibited at the OWASP AppSec USA 2018 Conference—Video available
Dr. Anita D’Amico, CEO of Code Dx, and Chris Horn, AppSec Researcher for Code Dx, gave an inspiring talk at the OWASP AppSec 2018 Conference on about Human factors that influence secure software development. OWASP has released a great YouTube video of their presentation. Watch it here.
Dr. Anita D’Amico will speak on a panel about Defense Seed Funding at Columbia University on November 14
Dr. Anita D’Amico, Code Dx CEO, will be on a panel about Defense Seed Funding at the Columbia University Startup Lab, 11/14. Dr. D’Amico will share her successes with SBIR awards.