Application Security

Security Champions must consider these elements

When talking about Security Champions, we are always careful to put our understanding related to AppSec. This care is grounded because we have some distinct understandings about the figure of the Security Champion, and this does not mean that we are right and others are wrong, just how we position this professional. We want to put here some points that we understand to be very important when we…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

Security Champion: you need to think about it

Security Champion and the battlefield There is an eternal battle inside your company: two of the most important areas are having conflicts for a very long time and it is necessary to end this. In companies that produce softwares it is common to have a dispute between two areas – Development & Security – To the development area, security teams are like a funnel for the…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

Why invest in AppSec Training

How can AppSec Training help? Aren’t you eager to know how training can help your company to reach maturity in Security Application Development? Training in Security is an investment that is not very fond of the organization. That is due to the lack of vision for results when analyzed in a short period of time scenario. In this article, we approach how Secure Development training can…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

Objectives for the development team in 2020

We came to that time of the year where everyone starts to think in their objectives and what they must achieve this year. This also happens to security professionals who start defining their objectives for the development team and how to reach them. Moreover we are listing some points considered to be important and must be inserted into the objectives list of a development team od…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application SecurityTech

Why APIs can be a high risk for companies

When we look at the development world and its evolution in the last few years, we can say that one of the fields that had least followed the ending of barriers discourse was the one focused on API development. One of the interesting points regarding the APIs is that many developers, for not seeing the APIs as a web application, forget many of the security concepts and best practices built up to…
Read more

4 tips for those who want to invest in a career in Application Security

AppSec Flow Extension for Burp Suite

Application SecurityProduct

Managing the Secure Development Process

When we started developing the platform which is the AppSec Flow today, our intentions were always to transform this in a central point where our clients could gather in one place not only data but also important information about their projects, auxiliating in our Secure Development Process. Nowadays we can, through Appsec Flow, gather in one platform all services that allow our clients to…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

The biggest challenges in AppSec

In our twelve years of experience, Conviso has been able to detect and help solve a number of application security challenges faced by our customers. That’s why we have decided to address in this article a list of those we meet very often when talking about secure development process. We are not going to deal at this time with issues such as vulnerability problems, scalability…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

AppSec Failure: Authentication Breach

It is increasingly common to see that companies are projecting their solutions to web applications, transforming their business to be more digital and showing the importance of what is no longer a trend to become a market requirement. This is a great leap forward for everyone to have access to services and products that would often be difficult to find outside the Internet. However, we…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions

Application Security

Web Application, Is it safe?

Recently we had the disclosure of some more data made available by Statista that shows that our country was the most affected by attacks on web applications in 2019. Certainly, this type of data leads us to question the security of our web applications and try to understand why we still have so many applications being made available with already well-known…
Read more

4 tips for those who want to invest in a career in Application Security

"Forgot your password?" - The problem with security questions