ThreadFix Thursday: PenTestIT, New Beta7 Build Available

threadfix

We’re recovering from RSA 2012 last week, but still managed to have a solid week of progress with ThreadFix:

  •  Lots of ThreadFix demos at RSA last week leading to some great feedback on needed features and UI improvements. We’ll keep pushing that stuff up into the Google Code issue tracker and then rolling out into the updated beta builds as we have bandwidth.
  • @PenTestIT covered ThreadFix in one of his posts this week. He had also covered ThreadFix in its previous incarnation when it was called Vulnerability Manager so I’m thrilled to see updated coverage.
  • We pushed a new build (beta7) live with some bugfixes, stability enhancements and a security fix. I’ll post most details shortly about the security fixes we made.

Next week will probably still be a little slow, but check back in the following one for “WAF Week” where we get our IDS/IPS/WAF lab back online and make some updates to our virtual patch generation capabilities. We’re moving beyond what we set up for the Self-Healing Cloud environment to support new scanners and new blocking technologies. Contact us if you have any questions or comments.

–Dan

dan _at_ denimgroup.com

@danielcornell

Posted via email from Denim Group’s Posterous

About Dan Cornell

A globally recognized application security expert, Dan Cornell holds over 15 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd., he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process. He is also the original creator of ThreadFix, Denim Group's industry leading application vulnerability management platform.
More Posts by Dan Cornell

Leave a Reply

Your email address will not be published. Required fields are marked *