Filter by tag: benchmark

RIPS Scores a Perfect 100% at OWASP Benchmark

21 min read 10 Mar 2020 by Malte Skoruppa
The OWASP Benchmark suite aims at measuring the quality of vulnerability detection tools by exposing both actual and false vulnerabilities within hundreds of test cases. Our SAST solution RIPS is able to achieve 100% true positives at 0% false positives for this suite—something no other SAST solution has achieved so far. In this blog post, we publish our results and discuss the pros and cons of popular benchmark suites.

5 Best Practices for your SAST Evaluation

11 min read 26 Feb 2019 by Johannes Dahse
Choosing the right solution for automated security testing is hard. A good way is to run a proof of concept (POC) of different vendors so you can verify marketing claims before adding another software to your stack. Our best practices can help to prepare an efficient and thorough evaluation so you can unmask snake oil from cutting-edge technology and make the best choice.

Comparison of Application Security Testing Approaches

11 min read 31 Jul 2018 by Johannes Dahse
Web applications can be tested manually or automated, as a blackbox or a whitebox, with static or dynamic analysis. In this post we compare the advantages and disadvantages of a variety of approaches and solutions. Review our table with Static / Dynamic / Interactive Application Security Testing features.