DeepFactor Blog
DeepFactor Secures $15M in Series A Funding to Deliver Modern AppSec for Cloud-Native Applications
DeepFactor Secures $15M in Series A Funding to Deliver Modern AppSec for Cloud-Native Applications Powered by Continuous AppSec Observability.
Now Available: DeepFactor v1.9 and Jenkins Plugin v1.0.1!
With support for Kubernetes v1.20 and v1.21, and several key enhancements to our Insights and Integrations - including a new Jenkins Plugin - DeepFactor continues to offer next-gen Continuous AppSec Observability.
DeepFactor v1.8 is here!
Version 1.8 of the DeepFactor portal is now available. We've added exciting new features and enhanced our existing continuous AppSec observability capabilities to give you comprehensive visibility of your applications.
What is the best way to observe application behavior at runtime?
When a developer wants to know what an application they've developed is doing, there are a number of different techniques that can be used.
The 4 Stages of DevSecOps Maturity
Over the last couple of years, we’ve had deep conversations with more than 100 organizations regarding current AppSec practices and plans for adding security into their DevOps pipelines. Based on our learnings from these conversations, enterprises can...
SBOM: the 1st Step Towards Defending Against SW Supply Chain Attacks
Recent cyber-attacks involving SolarWinds, the Colonial Pipeline, and JBS have put a spotlight on software supply chain vulnerabilities and highlight the immediate threat software supply chain attacks pose for organizations big and small.
How Engineering Teams Go From Good to Great with Runtime Observability
Have you ever contemplated why some teams, whether they are sports teams or business teams or any kind of team, move from good to great? Is it luck or conscious effort? According to Jim Collins, author of Good to Great: Why Some Companies Make the...
Why aren't developers rushing to use observability?
Are there no observability tools purpose-built for developers?
You can't spot all vulnerabilities with only static code scans!
A static code scanner is not sufficient in today’s DevOps-microservices-containers-world. You need RUNTIME observability into the application’s security, privacy, and compliance. Developers need to know if their code or a 3rd party’s code can cause...
With the pressure to release fast, how in the world can developers ensure they're releasing secure code with no known vulnerabilities???
With today's modern apps, developers cannot be expected to keep abreast of all findings in the security space and go over source code of all dependencies to see if there are any vulnerable usages. There's just not enough time in the day...
DeepFactor's Key Take-Aways from DeveloperWeek 2021
DeepFactor is honored to have an article that covered one of our speaking sessions, Breaking News: DevSecOps is Broken Without RUNTIME Observability, published on InformationWeek.com.
DeepFactor Launches Observability-as-Code
Integrate Security Observability into CI Pipelines What’s the big news? DeepFactor launches Observability-as-Code with it’s latest product release v1.5. Similar to how ‘Infrastructure-as-Code’ enables DevOps engineers to orchestrate infrastructure...