Mayhem Blog

Expert insights and tips on application security, API security, and other DevSecOps topics.

What’s New: August 2024

We’ve improved import/export capabilities, refined our analysis of Windows targets, and launched the first iteration of automated defect tracking.

Why Automotive Developers Shouldn't Overlook Application Fuzzing

This blog post will explore why application fuzzing is important and how it can complement protocol fuzzing in automotive development.

How to Test Embedded Systems Security Easily with Mayhem

In this blog post, we will demonstrate how Mayhem can be used to easily set up fuzzing campaigns in embedded systems, using IoTGoat’s dnsmasq as an example.

Lessons from Today’s CrowdStrike Outage: How to Navigate Software Release Challenges

Let’s talk about the challenges of delivering global scale software and the things engineering teams can do to improve reliability.

Meet the Mayhem Team at Blackhat 2024

We’re excited to announce that Mayhem will be attending and will have a booth at Black Hat 2024. We look forward to connecting with you!

Thought Leadership

Who Shift Left Really Benefits: 4 Responsibilities DevSecOps Shifts Onto Developers

Do the benefits of “shift left” justify the extra workload placed on development teams? Learn how to integrate security efficiently.

Mayhem Makers

Meet The Team Behind Mayhem: Come See Us At These Upcoming May 2023 Events

The Mayhem team has two events planned for May: a webinar: "How to Uncover and Address Vulnerabilities in Open-Source Libraries" and GlueCon.

Code Security

The DevSecOps Lifecycle: How to Automate Security in Software Development

In this blog post, we will explore the DevSecOps lifecycle and how to automate DevSecOps testing in your organization.

The Hacker Mind Podcast

The Hacker Mind Podcast: Hacking Real World Criminals Online

More and more criminals are identified through open source intelligence (OSINT). Sometimes a negative Yelp review can reveal their true identity. Daniel Clemens, CEO of ShadowDragon, talks about his more than two decades of digital investigations.

Code Security

DevOps vs. DevSecOps Process: How to Ensure Your Organization Has a Security Mindset

In this blog post, we’ll explore the shift from DevOps to DevSecOps and discuss some practical tips for your organization when moving from DevOps to DevSecOps.

Code Security

Common Techniques Hackers Use to Penetrate Systems and How to Protect Your Organization

In this blog post, we'll explore common techniques used to penetrate systems and how organizations can defend against each type of attack.

Code Security

History of Computer Hacking and Cybersecurity Threats: From the 50s to Today

In this post, we will explore the history of computer hacking and cybersecurity threats from the 1950s to present day.

The Hacker Mind Podcast

The Hacker Mind Podcast: EP 69 Self-Healing Operating Systems

It’s time to evolve beyond the UNIX operating system. OSes today are basically ineffective database managers, so why not build an OS that’s a database manager?

Mayhem Makers

Life at ForAllSecure: James Kessler, Staff Software Engineer

“Life at ForAllSecure” is a Q&A series dedicated to our growing company. For this month’s profile, we talked with James Kessler, Staff Software Engineer.

Fancy some inbox Mayhem?

Subscribe to our monthly newsletter for expert insights and news on DevSecOps topics, plus Mayhem tips and tutorials.

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form.