Mayhem Blog

Some will argue they’ve been “just fine so far" with no security investments. This blog will argue there is a cost in doing nothing.

Imagine if all of the sudden satellites across the world stopped working. Services that we take for granted such as navigation, satellite imagery, weather, and even time-keeping would become unavailable seemingly without explanation. This software contained a code execution bug discovered by ForAllSecure's Mayhem.

This post outlines the intangible values each solution delivers as cited by customers. Product justifications often focus on qualitative data. However, we find quantitative data to be equally critical for ensuring a full 360 degree examination of a selected technology’s impact across an entire organization.

Regression testing is the practice of re-running tests to ensure that previously developed and tested software still performs after new code commits.

This blog post explores the operating costs and ROI of three AppSec solutions comparable to fuzz testing.

Introduction Embedded applications are some of the most prolific software out there in the world. Whether it be routers, IoT devices or SCADA systems, they are very varied in architecture, use case, and purpose. Very few of these devices have security in mind when they were built.

With functional testing, there’s a finite number of ways that a feature can be used. With non-functional testing there’s an infinite number of possibilities. Fuzz testing is an effective solution for addressing those non-functional testing challenges.

Find out the fundamental reasons why fuzzing is so effective, and why it remains a useful part of a secure software development lifecycle.

Learn why SCA and AFT are two ideal solutions for transforming your DevOps workflow to a DevSecOp workflow.