HomeBlogApplication Security

VerSprite Blog

Literary Antidotes for Today's Security Snake Oil

Explore the latest insights and stay informed on evolving digital threats

A Look at RACI Models within Application Threat Modeling

Threat Modeling

A Look at RACI Models within Application Threat Modeling

In this model, you will see engineers, network professionals, developers, architects, business analysts, project managers, security champions, pentesters, and quality assurance engineers. Because they all have some level of involvement and collaboration at different stages of application, as well as organizational, threat modeling ensures effective results.

Learn More

Category

View All
Raising the Bar in Application Security Verification
Application Security, Threat Modeling

Raising the Bar in Application Security Verification

Any organization that is looking to vet how softwa...
5 Steps to Implement an Application Threat Modeling Program
Application Security, Threat Modeling

5 Steps to Implement an Application Threat Modeling Program

It is a given of the current cyber landscape and t...
ERAs are Dead. Long Live the Organizational Threat Model!
Threat Modeling

ERAs are Dead. Long Live the Organizational Threat Model!

The OTM is a 7-stage process, inspired by the appl...
Threats of IoT Devices
Application Security

Threats of IoT Devices

IoT devices have embedded their way into our daily...
What is PASTA Threat Modeling?
Threat Modeling

What is PASTA Threat Modeling?

PASTA threat modeling is a leading threat model me...
Pentester Answers Which Penetration Test is Right for Your Business
Application Security, Penetration Testing

Pentester Answers Which Penetration Test is Right for Your Business

What is penetration testing and which security tes...
How to Intercept TLS Traffic with ALPN Support
Penetration Testing, Security Testing

How to Intercept TLS Traffic with ALPN Support

VerSprite's Offensive Security team releases new, ...
Blind Spots in Security Awareness Training Programs
Application Security

Blind Spots in Security Awareness Training Programs

In this article, VerSprite's Offensive Security te...
How VerSprite’s Risk-Based Security Assessments Exposed Vulnerabilities Companies Never Imagined
Application Security

How VerSprite’s Risk-Based Security Assessments Exposed Vulnerabilities Companies Never Imagined

In this article, VerSprite's Offensive Security te...
What is Responsible Disclosure?
Application Security, Security Testing

What is Responsible Disclosure?

What is responsible disclosure? In this article, V...
What You Need to Know About Embedded Device Attack Surfaces
Application Security, Security Testing

What You Need to Know About Embedded Device Attack Surfaces

Embedded Device security is increasingly more impo...
Threat Models as Blueprints for Threat Intelligence, Threat Data
Threat Intelligence, Threat Modeling

Threat Models as Blueprints for Threat Intelligence, Threat Data

At this point, Organizational Threat Models are no...
Penetration Testing Methodology: Emulating Realistic Attacks by a Malicious Actor
Application Security, Threat Modeling

Penetration Testing Methodology: Emulating Realistic Attacks by a Malicious Actor

The foundation of VerSprite’s penetration testin...
How to Approach Integrating Application Security into Your SDLC
Application Security, Security Operations

How to Approach Integrating Application Security into Your SDLC

In this blog post we will take a deeper dive into ...
NordVPN’s Strategic Cybersecurity Partnership with VerSprite
Penetration Testing

NordVPN’s Strategic Cybersecurity Partnership with VerSprite

After facing a cybersecurity incident with third-p...