Benchmarking Dependency Analysis Tools

13 December 2017

OWASP Top 10 2017 lists A9: “using components with known vulnerabilities” as a major security issue facing companies. The recent Equifax data breach was actually caused by a known security issue in the Apache Struts library; it was an instance of the OWASP A9. There are several vendors in the market with products that claim to address this problem. However, it is often very difficult to compare and contrast the results from the tools that do dependency analysis. We recently released an open-source Evaluation Framework for Dependency Analysis (EFDA) to help address this challenge.

Read full news article on Dzone

Date:

13 December 2017

Categorie(s):

NEWS

Tag(s):

Analysis, Dependency, Open Source, OWASP, Performance, Tools

Armis Acquires AI-based Vulnerability Detection Firm Silk Security18 April 2024
DNS Attacks: Protecting Your Digital Assets with Advanced Security18 April 2024
Cisco creates architecture to improve security and sell you new switches18 April 2024
Cisco unveils Hypershield to enhance security across data centers and cloud platforms18 April 2024
Do you know how easy it is to renew Quick Heal subscription on product?18 April 2024