Nov 12, 2019 | API Security, Attack Surface Analysis
Application Programming Interfaces (APIs) contribute to a substantial amount of modern software application development. APIs are multidisciplinary, data driven and can be used for a number of applications, including microservices, web pages, mobile, the Internet of...
Oct 29, 2019 | Attack Surface Analysis, Threat Modeling Process, Threat Modeling Tools
Process follow diagrams, also known as process flow charts, help organizations to map out business processes. Process flow diagrams are visual tools that help to explain certain processes that occur, oftentimes in sequential order. Process flow diagrams lend...
Oct 23, 2019 | Attack Surface Analysis, Cloud security, DevSecOps, Enterprise Threat Modeling, Risk Management, Security
Information security objectives are defined goals and targets that aim to protect an organization’s data from unauthorized access, use, disclosure, disruption, modification, or destruction, thus ensuring its confidentiality, integrity, and availability. They...
Oct 22, 2019 | Attack Surface Analysis, DevSecOps, Threat Modeling as a Service
Here at ThreatModeler, we believe that everyone – from personal consumers to workers within business functions at an organization – are consumers of software. As the software landscape continues to evolve with technology advancements, hackers are finding new ways and...
Oct 16, 2019 | Attack Surface Analysis, Cloud security, DevSecOps
As more organizations across the major industries migrate to the cloud, architects are finding innovative ways to scale infrastructure and applications, while ensuring speedy time-to-market. AWS is a leading cloud Platform as a Service (PaaS) and is paving the way for...
Oct 8, 2019 | Attack Surface Analysis, Cloud security, Cyber Risk
Penetration testing involves teams who conduct technical and process hacks. Web application penetration testing, for example, involves the enlistment of hackers who see how and where they can accomplish an infiltration. Within the software development lifecycle...
