SECURITY RESOURCES

Offensive minded security exploit development
ERAs are Dead. Long Live the Organizational Threat Model!

ERAs are Dead. Long Live the Organizational Threat Model!

The OTM is a 7-stage process, inspired by the application threat modeling methodology, PASTA, that is applied at an organizational level. Much like application threat models, the intent is to have risks proven by various important contexts – business impact, likelihood, and the effectiveness of native countermeasures (or controls) that help reduce inherent risk levels.

Watch Now
The Process for Attack Simulation and Threat Analysis

Cybersecurity Library, Ebooks & Guides, Threat Modeling, VerSprite Security Resources

The Process for Attack Simulation and Threat Analysis

PASTA is the Process for Attack Simulation & Threat Analysis and is a risk-centric threat modeling methodology aimed at identifying viable threat patterns against an application or system environment.

Watch Now
A Look at RACI Models within Application Threat Modeling

A Look at RACI Models within Application Threat Modeling

In this model, you will see engineers, network professionals, developers, architects, business analysts, project managers, security champions, pentesters, and quality assurance engineers. Because they all have some level of involvement and collaboration at different stages of application, as well as organizational, threat modeling ensures effective results.

Watch Now
Using Risk-Based Threat Modeling to Protect Your Supply Chain

Cybersecurity Library, Ebooks & Guides, Supply Chains, VerSprite Security Resources

Using Risk-Based Threat Modeling to Protect Your Supply Chain

Why are supply chains a popular target for cybercriminals? VerSprite CEO, Tony UcedaVélez, introduces our risk-based threat modeling approach, PASTA, and how it allows organizations to better protect their supply chain software from threat actors.

Watch Now
Is Using Public WiFi Safe?

Is Using Public WiFi Safe?

Using public WiFi can leave you and your employees open to man-in-the-middle cyber attacks. With the increase of remote work, organizations must teach their employees how to stay safe on open WiFi networks. Get our tips on how to protect against hackers while on open WiFi networks.

Watch Now

Category

View All
Envisions Critical Threat Report 2024
eBook, Geopolitical Risk

Envisions Critical Threat Report 2024

How to Effectively Integrate RASP into a DevSecOps Model for AppSec
DevSecOps

How to Effectively Integrate RASP into a DevSecOps Model for AppSec

PASTA THREAT MODELING: SOLUTION TO COMPLEX CYBERSECURITY TASKS
Application Security, Threat Modeling

PASTA THREAT MODELING: SOLUTION TO COMPLEX CYBERSECURITY TASKS

Year-End Results: How to Measure the Success of Your Cybersecurity Program
Governance Risk & Compliance

Year-End Results: How to Measure the Success of Your Cybersecurity Program

Harnessing AI for DevSecOps: Is AI the Future?
AI, DevSecOps, News

Harnessing AI for DevSecOps: Is AI the Future?

Strengthening Cybersecurity Resilience in Uncertain Economic Times 
Governance Risk & Compliance

Strengthening Cybersecurity Resilience in Uncertain Economic Times 

What is a Red Teaming Exercise and How Does it Work?
Red Teaming and Social Engineering

What is a Red Teaming Exercise and How Does it Work?

VERSPRITE CYBERWATCH
CyberWatch

VERSPRITE CYBERWATCH

Automating Playbooks in D3
Threat & Vulnerability Management

Automating Playbooks in D3

The Intersection of Artificial Intelligence and Social Engineering: Next-Generation Threats
Mobile Security Testing, OffSec, Penetration Testing, Security Testing

The Intersection of Artificial Intelligence and Social Engineering: Next-Generation Threats

Identity and Access Management: The First Defense in Cloud Security
Cloud Security, DevSecOps

Identity and Access Management: The First Defense in Cloud Security

Managed Detection and Response Solutions: A Comprehensive Guide
Governance Risk & Compliance

Managed Detection and Response Solutions: A Comprehensive Guide

The DevOps Approach to Automating C2 Infrastructure (Part Two)
Application Security, Penetration Testing

The DevOps Approach to Automating C2 Infrastructure (Part Two)

Cybersecurity Innovator VerSprite Recognized on the Inc 5000 List for the Fourth Consecutive Year   
News

Cybersecurity Innovator VerSprite Recognized on the Inc 5000 List for the Fourth Consecutive Year   

The DevOps Approach to Automating C2 Infrastructure (Part One)
Application Security, Penetration Testing

The DevOps Approach to Automating C2 Infrastructure (Part One)

ci cd security, devsecops ci/cd

Subscribe for Our
Updates

Please enter your email address and receive the latest updates