CodeSonar to Evaluate Software for the 2019 CWE Top 25 Most Dangerous Software Errors

Using CodeSonar to Evaluate Software for the 2019 CWE Top 25 Most Dangerous Software Errors

Friday, November 01, 2019

The Common Weakness Enumeration (CWE) Top 25 most dangerous software errors, a.k.a., the CWE Top 25 is a list of the most common weaknesses that lead to security vulnerabilities. It is published on a regular basis by MITRE, as of this post, the most recent coming out in September 2019.  The CWE lists are based …

SOAR security orchestration automation response

SOAR: The Future of IT Security

Friday, October 25, 2019

We are in an era of data explosion. At the same time, threats are multiplying. As a result, the day-to-day efforts of securing data could overwhelm your Security Operations Center (SOC) team. A smart tool could help ensure that your security efforts are both effective and sustainable. One such tool is SOAR. What Is SOAR? SOAR …

SmartBear News

Announcing LoadNinja Updates: Improved UI!

Sunday, October 20, 2019

If you haven’t heard, we are the official and exclusive sponsor of Joe Colantonio’s TestGuild Performance and SRE Podcast! Check out the first few episodes now. We’re also excited to highlight some new enhancements and features that have been added to LoadNinja over the past several weeks! Maximize VU Inspector You can maximize the VU inspector so …

educe-test-costs

How to Reduce the Cost of Your Testing & Automation

Saturday, October 12, 2019

Most development teams appreciate the value of testing and test automation, but there’s always a push-and-pull when it comes to the time and costs associated with it. It’s important to understand the costs and benefits of testing and test automation in order to decide what level of coverage is appropriate for a given project. At …

SmartBear News

Just Announced: SmartBear Acquires Bitbar

Thursday, September 26, 2019

Want to know more about this week’s news around the latest SmartBear acquisition? Our own Anand Sundaram sits down to explain why Bitbar was such a natural fit for the SmartBear product portfolio, and what challenges our two companies are teaming up to solve for customers around the globe. Noel: We made a big announcement …

Static Analysis tool CodeSonar

How Sound Static Analysis Complements Heuristic Analysis

Wednesday, September 18, 2019

Not all static analysis tools work the same, there are in fact a spectrum of tools that use a variety of techniques ranging from relatively simple syntactic analysis through very sophisticated abstract interpretation-like algorithms that reason about potential executions. Each approach has its strengths and weaknesses and often tools, like GrammaTech CodeSonar, use a combination …

software security - DevSecOps

Tainted Data and Format String Attack Strike Again

Monday, September 09, 2019

A recent code execution vulnerability (we also call this a code injection vulnerably) was discovered in Palo Alto Networks’ GlobalProtect SSL VPN, a product that handles SSL handshakes and in particular, certain versions of the software running on these products, PAN-OS. The vulnerability was discovered by security researchers Orange Tsai and Meh Chang and documented on their blog. …

webinar

Webinar: Continuous Assessment of Code Quality, Metrics that Matter

Tuesday, September 03, 2019

Date: September 10, 2019 Time: 3pm Registration: https://zoom.us/webinar/register/WN_5itU5G-zRt-VSGGg3Zbcvw Assessing the quality of an application’s code is often a subjective process. This is why we turn to code metrics — quantitative measurements that provide valuable insights into our application’s code. Software Developers and Managers can take advantage of code metrics to understand the quality of the …

New SmartBear Guide Preps Testers on Changing Practices as Artificial Intelligence Revolutionizes In

Tuesday, July 02, 2019

SmartBear Releases Guide for Testers on What They Need to Know about AI and How It Will Change Testing

SmartBear Further Strengthens Leadership Position by Bringing New Test Automation Capabilities to the Atlassian Ecosystem

Wednesday, April 10, 2019

SmartBear Announces New Product Integrations and Functionality to Streamline Development by Bringing Together the Power of Test Automation and Test Management with Native Jira Experience.