Red Teaming

ANALYST REPORT: This report from analyst group Quocirca assess the benefits of using on-demand services to ensure security throughout the application life cycle.

Posted: 10 Jul 2012 | Published: 10 Jul 2012

EZINE: In this month’s cover story, senior VP of research and CTO at IANS, David Shackleford, clarifies best practices for security pen testing as well as offers practical steps for building an internal testing program, how to measure success, what kinds of skills are needed, the tools to use, what the process should look like and more.

Posted: 01 Jul 2012 | Published: 28 Jun 2012

EGUIDE: This expert E-Guide examines what a Web application test is and best practices to getting the most out of them. Uncover guidelines to ensure your pen test is a success and key recommendations on how you can avoid common pitfalls.

Posted: 24 Oct 2011 | Published: 24 Oct 2011

WHITE PAPER: Software security presents new measurement challenges: there are no established formulas for quantifying the security risk present in an application. This paper provides a set of metrics for ensuring an accurate view of software projects.

Posted: 07 May 2007 | Published: 01 Jan 2006

WHITE PAPER: This paper compiles clients’ frequently asked questions about Web application security. These questions are answered by security experts from Sirius and IBM. The goal is to help you understand the issues surrounding Web application security; so you can better prepare your organization for a security breach.

Posted: 13 Oct 2009 | Published: 01 Sep 2009

WHITE PAPER: Security assessments from IBM can help find "point-in-time" or ongoing security gaps in data confidentiality, integrity and accessibility as well as prior breaches and budgetary justification for making necessary security investments.

Posted: 09 Jan 2008 | Published: 09 Jan 2008

SOFTWARE DEMO: Take a multimedia tour of QualysGuard, the Web-based Vulnerability Management and Policy Compliance solution that pinpoints network vulnerabilities before hackers have a chance to exploit them.

Posted: 09 Apr 2007 | Premiered: 09 Apr 2007

WHITE PAPER: For process improvement, regulatory compliance, and competitive advantage; information leak protection is a vital part of securing internal data. Automated solutions accelerate the effectiveness of security controls while maintaining regulatory compliance

Posted: 06 Sep 2007 | Published: 26 Aug 2007

CASE STUDY: As threats within the corporate information security landscape intensify, this award is geared to recognizing excellence in IT security projects within the financial sector.

Posted: 17 Feb 2011 | Published: 17 Feb 2011

WHITE PAPER: This paper explains the two primary methods for discovering Web application vulnerabilities: using manual penetration testing and code review or using automated scanning tools and static analysis.

Posted: 11 Dec 2008 | Published: 11 Dec 2008