• Tags
access
administrators
analysis
and
API
Application
architects
architecture
(ASM)
assessment
(AST)
Attack
attacks
auditing
automation
awareness
beginners
best
box
Browser
career
center
Cloud
Code
coding
compliance
composition
Container
Cross-site
culture
cycle
(DAST)
Data
Database
Denial-of-service
developers
development
DevSecOps_longer
(DLP)
(DoS)
Dynamic
education
Embedded
Encryption
engineering
engineers
Enterprise
escalation
event
everyone
executives
exploit
Extensible
firewall
for
Fuzz
governance
Grey
(IAM)
Identity
In-memory
incident
information
InfoSec
injection
Input
Integration
intelligence
interface
IT
language
life
loss
Malware
management
managers
markup
metrics
Mobile
modeling
monitoring
Network
Object-oriented
(OOP)
Open
Operating
operations
(OWASP)
Password
Phishing
Physical
policy
practices
prevention
Privilege
professionals
programming
project
protection
Ransomware
(RASP)
response
review
Risk
Runtime
(SAST)
(SCA)
scripting
(SDLC)
Secure
security
security_longer
self-protection
Side-channel
(SIEM)
(SOC)
software
Static
surface
system
systems
testers
testing
Threat
training
trust
validation
vulnerability
(WAF)
(WAST)
weaknesses
web
Wireless
(XML)
(XSS)
Zero
Zero-day

Threat Modeling

What is Threat Modeling? Threat modeling is a process of identifying and analyzing potential threats to an asset or system. It is a systematic approach to security that helps organizations to understand their risks and take steps to mitigate them. Why is Threat Modeling Important? Threat modeling is important because it helps organizations to identify and address potential threats before they can be exploited. By understanding their risks, organizations can make informed decisions about how to allocate security resources and protect their assets.

March 19, 2019 Read

Threat Intelligence

Threat intelligence is information about threats to an organization’s information assets. It can be used to help organizations understand the threats they face, to develop mitigation strategies, and to respond to incidents. There are a variety of different sources of threat intelligence, including: Publicly available information: Publicly available information can be found on websites, in news articles, and in social media. Commercial threat intelligence providers: Commercial threat intelligence providers collect and analyze threat intelligence from a variety of sources and sell it to organizations.

January 18, 2019 Read