Security Static Automation

Building an AppSec Program

Application Security Program

Posted by Portilha Blog on Sunday, January 17, 2021

TOC

Build a Application Security Program

AppSec Training

  • Codebashing

Threat Modeling

  • STRIDE

Bug Bounty

  • HackerOne

Static Application Security Testing (SAST)

  • Checkmarx SAST

OSA/SCA - Open Source Analysis or Software Composition Analysis

  • Checkmarx OSA/SCA

IAST - Interactive Application Security Testing

DAST - Dynamic Application Security Testing

PenTesting

FEATURED TAGS