Mastodawn

Code Intelligence Jan 11, 2024

How do Cybersecurity Assurance Levels work in ISO 21434? 🚗

Like other automotive standards, ISO 21434 recommends using CALs to determine the rigor of testing activities. Our latest blog post sheds some light on how CALs can be used to build robust software in compliance with ISO 21434.

Topics include:
➡ How CALs work
➡ The difference between CALs and risk values
➡ The role of fuzz testing within CALs

Dive in: https://www.code-intelligence.com/blog/iso21434-cybersecurity-assurance-levels

The Role of Cybersecurity Assurance Levels (CALs) in ISO 21434

Explore the role of cybersecurity assurance levels in ISO 21434 and learn advanced fuzz testing a mandatory requirement.

Code Intelligence Oct 10, 2023

The waiting list for early access to CI Spark is now open✨

Be among the first to break down the barriers in dynamic white-box testing with our LLM-powered AI assistant.

Enroll for early access: https://www.code-intelligence.com/live-demo/ci-spark

#AppSec #AI #SoftwareTesting #llm

Early Access - CI Spark

Be among the first to access CI Sparkm our new LLM-assistant for automated onboarding of projects for dynamic white-box testing!

Code Intelligence Sep 28, 2023

Happening now!🚨

Don't miss out on our live demo, where Code Intelligence co-founder Khaled Yakdan
will show you how to break the barrier of dynamic testing through detecting and autoconfiguring entry points with CI Spark.

Early Access - CI Spark

Be among the first to access CI Sparkm our new LLM-assistant for automated onboarding of projects for dynamic white-box testing!

Code Intelligence Jul 27, 2023

How we found a Prototype Pollution in protobuf.js - Live Demo 🚨

Our team has recently found a prototype pollution vulnerability in protobuf.js (CVE-2023-36665).

With a high CVSS Score of 9.8, this vulnerability would have put affected applications at risk of remote code execution and denial of service attacks.

Our colleague Peter Samarin wrote the bug detector behind it all, and will be giving a live demo of how this CVE was found.

Thursday, August 10th at 4:00 PM CEST/ 10:00 AM EDT

https://www.code-intelligence.com/webinar/how-we-found-a-prototype-pollution-in-protobufjs#register

#javascript #cve #cybersecurity

How we found a Prototype Pollution in protobuf.js

Watch our webinar and learn how we found a new CVE in protobuf.js

Code Intelligence Jul 5, 2023

AI Is fundamentally transforming the SDLC 🔄

We published a new whitepaper taking an in-depth look at how self-learning AI will reshape the SDLC and the way we write, test and deploy code.

Get your copy at http://code-intelligence.com/ai

#softwaredevelopment #Softwareengineering #ai

Self-Learning AI in the Software Development Lifecycle [Whitepaper]

Find out how self-learning AI is reshaping the SDLC, allowing modern dev teams to ship software faster and more securely (free download).

Code Intelligence Jun 29, 2023

Join us today at 4:00 PM CEST / 10:00 AM EDT!

Come meet Code Intelligence CTO Niklas Henrich live and join a discussion on how your unit tests can be enhanced with self-learning AI to reveal bugs and security vulnerabilities that would otherwise go unnoticed.

Stay tuned to the end for interactive questions and a live Q&A.

https://www.code-intelligence.com/webinar/spring-boot-apis

#unittests #springboot #apitest

Intelligent Testing of Spring Boot APIs

Watch our webinar and learn how to identify and fix vulnerabilities in Spring Boot APIs

Code Intelligence Jun 15, 2023

𝐓𝐡𝐞 𝐅𝐮𝐭𝐮𝐫𝐞 𝐨𝐟 𝐏𝐫𝐨𝐝𝐮𝐜𝐭𝐢𝐯𝐞 𝐒𝐨𝐟𝐭𝐰𝐚𝐫𝐞 𝐃𝐞𝐯𝐞𝐥𝐨𝐩𝐦𝐞𝐧𝐭: 𝐒𝐞𝐥𝐟-𝐋𝐞𝐚𝐫𝐧𝐢𝐧𝐠 𝐀𝐈 𝐟𝐨𝐫 𝐚 𝐒𝐞𝐜𝐮𝐫𝐞 𝐓𝐨𝐦𝐨𝐫𝐫𝐨𝐰

Last week, our CEO Sergej Dechand led viewers through a live discussion of the transformative power of self-learning AI in software development.

We would like to thank all of our viewers for the great questions and discussions at the end!

Missed our live event? Don’t worry, you can watch it anytime on demand.

Check out the recording to learn about
- the trajectory of current trends
- leveraging self-learning AI to build secure software
- the role of AI across the different stages of the SDLC

Learn more here:
https://www.code-intelligence.com/webinar/devsecops/future-of-productive-development

DevSecOps Talks - The Future of Productive Development

Register for our talk series and gain valuable insights and inspiration, improve your practices in DevSecOps, as well as foster connections and collaboration within the community.

Show thread

Code Intelligence Apr 4, 2023

To those who missed it, this was our special feature for April Fool's day:

Code Intelligence Apr 1, 2023

New Feature: Catch ‘em all with CI Instant Fix! 🆕

Try it out in 4 easy steps:
1️⃣ Log in to the CI App: https://app.code-intelligence.com (requires GitHub sign-in)

2️⃣ Click on the application you want to instantly fix

3️⃣ Click on CI Instant Fix

4️⃣ Catch 'em all!

#Fuzzing #Security #AprilFoolsDay

Code Intelligence | Login

Get free access to Code Intelligence's application security testing platform

Code Intelligence Feb 17, 2023

Jazzer.js now integrates with Jest 🥳

JavaScript developers can now test their applications for both functional and security issues at the same time.

The Jazzer.js fuzzing engine helps to find critical security vulnerabilities by generating invalid or unexpected inputs.

This is now possible using the familiar syntax of unit testing in Jest.

More on this in our blog: https://www.code-intelligence.com/blog/fuzzing-javascript-jazzer.js

@joshin4colours will also host a coding session next week to demo this integration: https://www.linkedin.com/video/event/urn:li:ugcPost:7032002082748420096/

Let us know which other frameworks you would like to see Jazzer.js support for!

How to Fuzz JavaScript with Jest and Jazzer.js

Learn how to fuzz JavaScript using Jest. With the integration of the open-source fuzzing engine Jazzer.js, JavaScript fuzzing is as easy as unit testing.

Start Fuzzing	https://github.com/CodeIntelligenceTesting/cifuzz
Java fuzzing	https://github.com/CodeIntelligenceTesting/jazzer
JavaScript fuzzing	https://github.com/CodeIntelligenceTesting/jazzer.js
Home	https://www.code-intelligence.com/