Beyond Blind Defense: Gaining Insights from Proactive AppSec

September 26, 2016

Share this Video
Facebook
Twitter
Email
LinkedIn
Google+

As application security continues to evolve, defenders gain more effective and varied tools to aid in strengthening application security. Two such tools, the Content Security Policy (CSP) and HTTP Public Key Pinning (HPKP) browser-side web standards, not only act as added layers of defense but also give insight into common failure cases and classes of attacks, such as Cross-Site Scripting and Man In The Middle attacks.

Watch as they briefly discuss the benefits of CSP and HPKP, focus more deeply on how Reporting works with both of these standards, what insights can be gained through CSP and HPKP Reporting, as well as special considerations for those considering implementation of both of these standards in either monitoring or blocking modes.

Previous Video

What is Carding, Card Cracking and Cashing Out?

In order to protect your website, you need to know how you’re being attacked. Carding, Card Cracking and C...

Rami Essaid CEO of Distil Networks Interviewed on BizTalkRadio’s “The Big Biz Show”

Rami Essaid CEO of Distil Networks Interviewed on BizTalkRadio’s “The Big Biz Show”.

Other content in this Stream

3:23

Anatomy of an Account Takeover Attack

Beyond Blind Defense: Gaining Insights from Proactive AppSec

Previous Video

Next Article

Other content in this Stream

We're interviewing Anna from Distil Networks about account takeover attacks. The interview covers what account takeovers look like in 2018, and the latest from the report on account takeover types, wh

Watch Paul and Rami as they reveal the data from Distil Networks’ 5th Annual Bad Bot Report, which is based on hundreds of billions of bad bot requests, anonymized over thousands of domains.

We're interviewing Anna from Distil Networks about the 2018 Bad Bot report. The interview covers what bots are doing new in 2018, and the latest from the report on new bad actor methods in web scrapin

Penetration testers as well as black hat hackers look for vulnerabilities in websites. Both groups use the same processes and automated tools to achieve very different goals. Learn about what OWASP ca

Founder of Distil Networks, Rami Essaid is a passionate entrepreneur who has been building companies for over a decade. Disrupting industries with technological innovations is a personal mission. He j

Below view a slide deck from Distil Networks and Queue-it discussing the evolution of bots, their impact on the ticketing ecosystem, scalping, and current legislation and best practices.

Distil Networks is the only holistic bot defense as adaptable and vigilant as the threat itself. Web scraping, bad bots and much more attack websites constantly, Distil Networks help protect your bus

Rami Essaid, Co-Founder of Distil Networks advises enterprise companies around the world, focusing on embracing the cloud to improve scalability and reliability.

Rami Essaid, Distil Networks’ CEO and co-founder, takes just three minutes to run through how Distil Networks can protect your web applications from bad bots, API abuse, and fraud.

So, now we're going to tell you about this attack that we coined "GiftGhostBot," and it's sort of the great gift card heist that we called in early 2017.

When aggressive scrapers caused slowdowns on iCruise.com, Antoine Zammit, VP of technology at its parent company WMPH Vacations, said enough was enough. Distil Networks is a bot detection and mitigat

What are the odds that your gaming website is being compromised by automated bots? Watch this interactive webinar with Distil Networks to learn about the bad bot landscape.

Many posit that cloud architectures/business models will bring about a more patient, gradual availability model, where failures are either rendered unimportant because of mass replication or load shif

Did you know that 16.1% of bad bots now masquerade as mobile devices? Or that bad bot traffic is up 36.43% on the world’s largest site since 2015? Distil Networks has produced their fourth annual Bad

“Bots” first entered popular consciousness last year with the passing of the BOTS Act, and the proliferation of messaging bots. However, those of us in the ticketing industry have been dealing with bo

Join Tin Zaw, Director of Security Solutions at Verizon Digital Media Services and Edward Roberts, Director of Product Marketing at Distil Networks, for a lively conversation about the new automated t

Distil Networks blocks every OWASP Automated Threat, including web scraping, denial of service, skewing, and more. Find out how here.

The Drupal Association and Distil Networks would like to invite you to a webinar about how we teamed up to protect the home of one of the largest and longest standing open source projects from spam.

Watch the discussion led by The 614 Group and Distil Networks with commentary from industry luminaries about the fight against non-human traffic. According

Credential cracking and credential stuffing are two of the ways that hackers use bots to compromise your website security. Ready for the good news? Distil Networks blocks every OWASP automated threat.