Prabhu SubramanianinShiftLeft BlogWhat a False Negative is and why it should be your primary criteria for a SAST toolIn our earlier post, we discussed False Positives and why having some of them is a good thing for your teams. This blog is about a term…Sep 8, 2021Sep 8, 2021
Prabhu SubramanianinShiftLeft BlogXStream Vulnerabilities — Detection & MitigationLooking at RCEs in the XStream Java Library and How you can prevent themJul 14, 2021Jul 14, 2021
Prabhu SubramanianinShiftLeft BlogDecouple your ShiftLeft AppSec policies with Open Policy AgentThis blog is a tutorial to use open policy agent with ShiftLeft platform.Apr 6, 2021Apr 6, 2021
Prabhu SubramanianinShiftLeft BlogApplication Security for builders and creators — part 2Part 2 of Alice and Bob’s journey as they build and engineer security directly into their app with ShiftLeft.Mar 20, 2021Mar 20, 2021
Prabhu SubramanianinShiftLeft BlogApplication Security for builders and creatorsAlice and Bob decides to develop an app. Claire integrates security into their dev workflow with ShiftLeft NG SAST.Mar 14, 2021Mar 14, 2021
Prabhu SubramanianinShiftLeft BlogSecurity Code Review of a Banking Trojan — CerberusIn this blog, we perform a security code review and analysis of a banking trojan called Cerberus using the leaked source code.Sep 6, 2020Sep 6, 2020
Prabhu SubramanianinShiftLeft BlogDevSecOps with Atlassian BitbucketIn this evolving blog series, Prabhu Subramanian shares his research and automation scripts for adopting DevSecOps processes with…Jul 29, 2020Jul 29, 2020
Prabhu SubramanianinShiftLeft BlogDevOps productivity series — GitHub for DevSecOpsIn this article, Prabhu Subramanian shares some tips and scripts to effectively use GitHub for DevSecOps needsJul 23, 2020Jul 23, 2020
Prabhu SubramanianinShiftLeft BlogThoughts on the state of enterprise open sourceIs open source really full of security vulnerabilities, unmaintained dependencies and poor documentation? My thoughts here …Jun 23, 2020Jun 23, 2020
Prabhu SubramanianinShiftLeft Blog(Re)Introduce application security to your teamHow to (re)introduce the need for application security to your team. Here are some ideas …Jun 6, 2020Jun 6, 2020