Application SecurityProduct

Managing the Secure Development Process

When we started developing the platform which is the AppSec Flow today, our intentions were always to transform this in a central point where our clients could gather in one place not only data but also important information about their projects, auxiliating in our Secure Development Process. Nowadays we can, through Appsec Flow, gather in one platform all services that allow our clients to…
Read more

AppSec to Go: The importance of investing in AppSec training

Comparing SAMM & BSIMM models

Application SecurityProduct

Integration with Jira and GitHub, a unified vision of vulnerabilities

During the development process it is showed the importance of having this service and integration tools so the process can flow in the most secure way. It is not different when we want our clients to go through the most secure development process, and one concern is the process of integration and the quantity of information generated by these tools. Many data, various tools One…
Read more

AppSec to Go: The importance of investing in AppSec training

Comparing SAMM & BSIMM models

Application SecurityProduct

Vulnerability Management - SAST & DAST Tools

At CONVISO we aim at quality and coding security. For this we look for better practices to complete all of our services with great effort. Therefore we defend that good testing, not only code review but also intrusion test, for instance, must have a direct participation of an expert analyst having a deep understand. This thought sometimes is misunderstood by clients and by the…
Read more

AppSec to Go: The importance of investing in AppSec training

Comparing SAMM & BSIMM models

Product

Security Advisory | CVE-2010-3977 | cform Wordpress Plugin V 11.5

Introduction 1. Copyright and Disclaimer The information in this advisory is Copyright 2010 Conviso and provided so that the society can understand the risk they may be facing by running affected software, hardware or other components used on their systems. In case you wish to copy information from this advisory, you must either copy all of it or refer to this document (including our URL).
Read more

Managing the Secure Development Process

Integration with Jira and GitHub, a unified vision of vulnerabilities

Product

Security Advisory CVE 2010-1582 24/7 Real Media’s Open AdStream v.5.7

Introduction 1. Copyright and Disclaimer The information in this advisory is Copyright 2010 Conviso and provided so that the society can understand the risk they may be facing by running affected software, hardware or other components used on their systems. In case you wish to copy information from this advisory, you must either copy all of it or refer to this document (including our URL).
Read more

Managing the Secure Development Process

Integration with Jira and GitHub, a unified vision of vulnerabilities