Application Security

3 Benefits of Threat Modeling

What are the benefits of Threat Modeling? To complete the idea on the post about Threat Modeling, on this post the approach is on the benefits might not be directly visualized quen applied to threat modeling. In case you have started the reading by this post perhaś it is better to start by the “Basic Concepts of Threat Modeling”. On our previous article it was explained a little on the…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Application Security

Security Champions must consider these elements

When talking about Security Champions, we are always careful to put our understanding related to AppSec. This care is grounded because we have some distinct understandings about the figure of the Security Champion, and this does not mean that we are right and others are wrong, just how we position this professional. We want to put here some points that we understand to be very important when we…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Application Security

AppSec in the process of digital transformation

Another episode of AppSec to Go is on the air. The third episode of Conviso’s podcast addresses the theme of AppSec in the process of digital transformation. This time, the host is Nícolas Schmaltz, leader of the Consulting & Training team. To enrich the chat, the guest of the occasion is Guilherme Silva, a specialist in Information Security.  Silva has experience in implementing…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Application Security

Which topics should an AppSec Training Contemplate?

The development market seems to be becoming more and more aware of the need for Application Security Training (AppSec). However, the market still looks for generic training, which often meet compliance issues, but do not add real value to development teams. Therefore, this article will present the characteristics and subjects for a good AppSec training. The Target Audience in AppSec…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Application Security

AppSecFlow - Vulnerability Management Process in a single Dashboard

The amount of information and data generated during the development process, or even when testing your systems is extremely important for good management performance. The lack or difficulty on finding information is, without a doubt, a point that takes as much for the vulnerability management process as for other secure development processes, a very big burden. It is not rare to find in…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Application SecurityProduct

Vulnerability Management - SAST & DAST Tools

At CONVISO we aim at quality and coding security. For this we look for better practices to complete all of our services with great effort. Therefore we defend that good testing, not only code review but also intrusion test, for instance, must have a direct participation of an expert analyst having a deep understand. This thought sometimes is misunderstood by clients and by the…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Podcast

Conviso announces Podcast - first episode is now available

Conviso has just released its own podcast, AppSec To Go. The goal is to further stimulate appsec debates through relaxed conversations with those who experience the theme on a daily basis. In the first episode, the interviewee was the CEO of Conviso, Wagner Elias, who told a little about the AppSec Scenario in Brazil in the last 12 years – that is, since the birth of Conviso. The content is…
Read more

AppSec to Go: The importance of investing in AppSec training

Application Security

The biggest challenges in AppSec

In our twelve years of experience, Conviso has been able to detect and help solve a number of application security challenges faced by our customers. That’s why we have decided to address in this article a list of those we meet very often when talking about secure development process. We are not going to deal at this time with issues such as vulnerability problems, scalability…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development

Application Security

6 security tips for software development

The security for software development must take into consideration many factors such as Client’s necessity, target, and the demand for agile delivery are just some details on the routine of a development team. The care for security, for instance, is essential in modern application. Even in the case of simple mobile apps, we cannot ignore the need to work with secure development…
Read more

Phishing scam using Conviso's name: don't fall for it!

Webinar: PIX and the Secure Development