Category Archives: General

Continuous Asset Profiling

May 24, 2018 / by

Something we are pretty proud of at edgescan is our Continuous Asset Profiling service which is part of any edgescan license. We call it HIDE (Host Index, Discovery & Enumeration). So what is it and why should I care? HIDE provides continuous asset profiling across blocks of our clients IP’s. So rather than asking a […]

Read more
blog-3

edgescan announces the release of the edgescan-jira plugin

May 24, 2018 / by

We’re delighted to announce the release of the edgescan Jira Plugin. This is a free plugin for Jira which uses the new edgescan API to integrate edgescan data with Atlassian’s powerful issue tracking platform. Date: 30/9/2015, Dublin, Ireland Edgescan connection configuration screen With the plugin installed and configured, a Jira issue will be automatically created […]

Read more

edgescan announces new Gartner status award

May 24, 2018 / by

edgescan: “sample vendor” in the Gartner Hype Cycle for Application Security, Software as a service (Saas) and Cloud Security 2015 Date: 27/7/2015, Dublin, Ireland edgescan, the leading provider of web application and server risk management solutions announced today that it has been listed as a “sample vendor” in the Gartner Hype Cycle for Application Security, […]

Read more

Security done wrong and blowing the budget…how not to secure your business

December 22, 2017 / by

The State of Cyber Security: We don’t want a 15 year old breaching our systems, stealing data and taking 13% off our share price as a result…..hmm I think not. If I wanna be hacked the hacker has got to be elite and like an uber hacker right!! It is strikingly obvious that security is still weak for both […]

Read more

Risk – Medieval approaches to AppSec

December 22, 2017 / by

Vulnerability management involves a little more than finding security issues in code and/or hosting systems……I find that much of the industry does not understand that vulnerability management, penetration testing, threat detection, endpoint detection, malware prevention and even anti-virus services and tools are about managing risk. Managing risk is about reducing it to a suitable level […]

Read more

AngularJS and forms security & design

July 24, 2015 / by

Overview Rich internet applications make use of the powerful features that new web browsers come equipped with. The web has come a long way since the dull, stateless server content generated HTML pages of the 90’s. Today it is possible to interact with almost any webpage, thus opening a miryad of possibilities to the user […]

Read more

Rails SQL injection gotchas

December 30, 2014 / by

In this post we’re gonna look at some places where it is possible to inject arbitrary SQL commands into active record queries in Ruby on Rails. ActiveRecord has pretty good protection against SQL injection, so much so that sometimes I think it lulls us into a false sense of security. We’re pretty well protected by […]

Read more