Filter by tag: insights

Sync and Manage your Security Issues within Jira

8 min read 13 Sep 2018 by Malena Ebert
We are excited to announce the release of our new Jira plugin. It allows to synchronize security issues detected by RIPS with your existing Jira issues so you can track and collaborate on software bugs in a single place.

Framework Misconfiguration Analysis with RIPS

10 min read 21 Aug 2018 by Nils Werner
PHP frameworks such as Symfony, Laravel and CodeIgniter come with a variety of functions and components that make it easier for developers to build their application. However, various settings and configurations can have far-reaching consequences for security. RIPS is now also able to detect security weaknesses that stem from insecure configurations.

What is Phar Deserialization

9 min read 14 Aug 2018 by Johannes Dahse
Last week a new exploitation technique for PHP applications was announced at the BlackHat USA conference. Find out everything you need to know in this blog post.

Comparison of Application Security Testing Approaches

15 min read 31 Jul 2018 by Johannes Dahse
Web applications can be tested manually or automated, as a blackbox or a whitebox, with static or dynamic analysis. In this post we compare the advantages and disadvantages of a variety of approaches and solutions.

RIPS Integration into Jenkins CI with Pipeline Support

11 min read 30 May 2018 by Malena Ebert
Jenkins CI is one of the leading open source automation server and provides hundreds of plugins to support building, deploying and automating any project. RIPS supports the integration of security analysis into Jenkins that helps to prevent that new security vulnerabilities are added to your build. Our new integration plugin now also supports the Pipeline feature.