Excerpt from my latest blog post at Cigital… More and more organizations are using static analysis tools to find security Continue Reading
Secure Code Review
Secure Code Review Musings
When And How To Support Static Analysis Tools With Manual Code Review
My latest blog post on Cigital’s blog. Analyzing source code for security bugs gets a lot of attention and focus Continue Reading
The Benefits of Code Scanning
This isn’t the only place my blogging appears. The Benefits of Code Scanning on Cigital’s Blog: “All software projects are Continue Reading
The Joys of Waiting for Tools Part II
Sometimes the joys of waiting for tools is you simply can’t wait. No matter how happily the tools will take Continue Reading
The Joys of Waiting for Tools
Ah the joys of waiting for tools to do their job. Set the scan up either of the source code Continue Reading
Winning Over Developers
One of my favorite memories of living through Microsoft’s adoption of secure development was sitting in a hacking demo by Continue Reading