Research and SDLC - Information Technology Zone

How G-Research Used TuringBots To Transform Software Development

Forrester IT

MARCH 21, 2024

As we outlined in previous research, Generative AI assistants known as TuringBots can serve as powerful tools to address some of the broader software development challenges. Specifically they help to automate a wide range of tasks throughout the software development life cycle (SDLC).

Software Development

Software Development Research SDLC Software

Reimagine application modernisation with the power of generative AI

CIO Business Intelligence

JANUARY 15, 2025

According to research from NTT DATA , 90% of organisations acknowledge that outdated infrastructure severely curtails their capacity to integrate cutting-edge technologies, including GenAI, negatively impacts their business agility, and limits their ability to innovate. [1]

Applications

Applications SDLC Agile Enterprise

Broadcom launches VMware Tanzu Data Services

Network World

NOVEMBER 5, 2024

Asked for his reaction to the launch, John Annand, practice lead at Info-Tech Research Group, said, “there is a fun contrast in VMware by Broadcom these days. All in all, he said, it is a “complete set of tools (though not perhaps the ones every individual admin/engineer would have picked) for an MVP [minimum viable product] data service.

Vmware

Vmware Disaster Recovery Data Backup

Webinars

How to Achieve High-Accuracy Results When Using LLMs

MORE WEBINARS

Unlocking the potential of generative AI in the software development life cycle

CIO Business Intelligence

SEPTEMBER 10, 2024

The traditional software development life cycle (SDLC) is fraught with challenges, particularly requirement gathering, contributing to 40-50% of project failures. These challenges persist because companies still rely on traditional SDLC management methods, which can result in slow, error-prone processes. Result: 70% more efficient.

Software Development

Software Development SDLC Development Software

3 ways CIOs are leading the way to an AI-enabled enterprise

CIO Business Intelligence

SEPTEMBER 6, 2024

Gartner Research indicates that 55 percent of CIOs will use genAI in some form over the next 24 months. According to an April 2024 IDC study, CIOs will oversee AI resources in 53 percent of surveyed organizations. 2 CIOs must decide which priorities come first. KPMG believes these are the pivotal roles the CIO must play right now.

Enterprise

Enterprise Enterprise SDLC Budget

Is it worth measuring software developer productivity? CIOs weigh in

CIO Business Intelligence

DECEMBER 20, 2023

Measure business outcomes, not lines of code There are various measurement points throughout the software development lifecycle (SDLC), from idea generation to production stages, that should be monitored to ensure a smooth flow. “If One such framework is SPACE.

Software Development

Software Development Software Software Development

When least privilege is the most important thing

CIO Business Intelligence

NOVEMBER 2, 2023

Enterprise software companies and large corporations usually have some level of security built into their software development lifecycle; but on mobile the entire SDLC could be a day or a week between the initial idea and deployment. Vendors who build secure systems today will be in a much better position when a disaster occurs.

Backup

Backup Information Security Security Cloud

Why Fuzz Testing Is Indispensable: Billy Rios

ForAllSecure

SEPTEMBER 2, 2021

Rios is an author, researcher, venture advisor, and entrepreneur. I neither have any recollection of any product manager or security engineer saying fuzzing is not worth it, nor any account of an organization that’s implemented fuzzing into their SDLC ripping them out -- from Facebook to Twitter to Microsoft. This is key.

SDLC

SDLC Programming Applications Security

Safeguarding Ethical Development in ChatGPT and Other LLMs

SecureWorld News

AUGUST 7, 2023

While AI's LLMs have proven invaluable in augmenting productivity, research, and data analysis, technologists must recognize security standards as an unwavering prerequisite for the survival and success of any new technology. Why should AI get a pass on S (Secure) SDLC methodologies?

Development

Development SDLC Security Tools

Agile Process Improvement Using. Agile! - Social, Agile, and.

Social, Agile and Transformation

MARCH 8, 2011

The owner of the SDLC (or someone from this office) should act as product owner, and the team should be representatives of your engineering teams and leaders for different skills (pm, ba, development lead, QA). Also, for this team, I recommend an acceptance criteria around researching and leveraging best practices as part of a solution.

Agile

Agile Social SCRUM Software Development

10 Stages of the software development lifecycle for startups

Dataconomy

APRIL 5, 2024

To get promising ideas, it is also worth conducting market research to get a clearer picture of the current state of the industry and competitors. It is best to combine testing with SDLC. No idea must be ignored during this session. Everything is recorded for further analysis.

Software Development

Software Development Software Software Development

The FuzzCon 2021 Real Talks Panel

ForAllSecure

SEPTEMBER 29, 2021

Direct and immediate feedback within the SDLC was the key capability of fuzzing that got Larry over his resistance of inserting DAST in the SDLC. Research around contextual learning reveals that there are 3 aspects: personal, social, and organizational. However, recent evolutions in fuzz testing has shifted his mindset.

SDLC

SDLC Study Programming Development

How Fuzzing Redefines Application Security

ForAllSecure

JULY 8, 2021

Prior, it was considered a dark art that could only be harnessed by security researchers. Not a single research team leveraged SAST. Seven of the top cybersecurity research teams unanimously and independently came to the conclusion that fuzz testing was the technique needed to gain the best advantage in the competition.

Applications

Applications Security Analysis SDLC

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

Miller in 1990 when his research group provided random inputs to typical UNIX programs to test reliability. Their first research paper showed between 25-33% of all unix utilities could be crashed with simple random input. The term “fuzz testing” was coined by Prof. While Prof.

Analysis

Analysis Security Software Software

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

ForAllSecure

JUNE 7, 2021

Miller in 1990 when his research group provided random inputs to typical UNIX programs to test reliability. Their first research paper showed between 25-33% of all unix utilities could be crashed with simple random input. The term “fuzz testing” was coined by Prof. While Prof.

Analysis

Analysis Security Software Software

FuzzCon 2021 Addresses Ease-of-Use in Fuzz Testing

ForAllSecure

SEPTEMBER 9, 2021

Director of Microsoft Research NExT Special Projects, echoed this sentiment: “Fuzzing seems like black magic and it just seems impossible to bring into [a] company. It is also the only DAST technology that’s able to instrument itself into the SDLC, delivering accurate results directly to the developers.

SDLC

SDLC Applications Security Analysis

Breaking Down the Product Benefits

ForAllSecure

JANUARY 21, 2021

As software testing gets pushed out further right of the SDLC, remediation becomes increasingly expensive and time-to-market delayed. Mike Walker, Senior Director of Microsoft Research NExT Special Projects, observes, “typically the future of technology is already here, it’s just unevenly distributed.”

Open Source

Open Source Licensing Applications SDLC

Breaking Down the Product Benefits

ForAllSecure

JANUARY 21, 2021

As software testing gets pushed out further right of the SDLC, remediation becomes increasingly expensive and time-to-market delayed. Mike Walker, Senior Director of Microsoft Research NExT Special Projects, observes, “typically the future of technology is already here, it’s just unevenly distributed.”

Open Source

Open Source Licensing Analysis Applications

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

Fuzzing as a technique is increasingly used by vulnerability researchers for finding vectors of attack. Back when unit testing was introduced to the SDLC, it fundamentally changed how software was developed. This is additional context for determining the severity of a defect. Fuzzing is the next evolution.

Applications

Applications Security Analysis Software

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 29, 2020

Researchers claim they’ve found a flaw that allows hackers to access your device from hundreds of feet away, giving them the ability to unlock your front door, even start your car. He’s a researcher at the University of Michigan and has been pioneering a new category of acoustic interference attacks. So it depends.

Research

Research Engineering Examples System

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 29, 2020

Researchers claim they’ve found a flaw that allows hackers to access your device from hundreds of feet away, giving them the ability to unlock your front door, even start your car. He’s a researcher at the University of Michigan and has been pioneering a new category of acoustic interference attacks. So it depends.

Research

Research Engineering Examples System

The Hacker Mind Podcast: Hacking With Light And Sound

ForAllSecure

SEPTEMBER 28, 2020

Researchers claim they’ve found a flaw that allows hackers to access your device from hundreds of feet away, giving them the ability to unlock your front door, even start your car. He’s a researcher at the University of Michigan and has been pioneering a new category of acoustic interference attacks. So it depends.

Research

Research Engineering Examples System

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

Fuzzing as a technique is increasingly used by vulnerability researchers for finding vectors of attack. Back when unit testing was introduced to the SDLC, it fundamentally changed how software was developed. This is additional context for determining the severity of a defect. Fuzzing is the next evolution.

Applications

Applications Security Analysis Software

Challenging ROI Myths Of Static Application Security Testing (SAST)

ForAllSecure

JUNE 23, 2020

Fuzzing as a technique is increasingly used by vulnerability researchers for finding vectors of attack. Back when unit testing was introduced to the SDLC, it fundamentally changed how software was developed. This is additional context for determining the severity of a defect. Fuzzing is the next evolution.

Applications

Applications Security Analysis Software

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world. despite what the researchers found. One of the things that the researchers have done is they did notify the FTC of these apps. Dave Bittner: [00:15:47] No fair going around that way.

Security

Security Applications Development Financial

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world. despite what the researchers found. One of the things that the researchers have done is they did notify the FTC of these apps. Dave Bittner: [00:15:47] No fair going around that way.

Security

Security Applications Development Financial

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

ForAllSecure

AUGUST 14, 2019

The CyberWire Daily includes interviews with a wide spectrum of experts from industry, academia, and research organizations all over the world. despite what the researchers found. One of the things that the researchers have done is they did notify the FTC of these apps. Dave Bittner: [00:15:47] No fair going around that way.

Security

Security Applications Development Financial

Reimagine application modernisation with the power of generative AI

CIO Business Intelligence

JANUARY 15, 2025

According to research from NTT DATA , 90% of organisations acknowledge that outdated infrastructure severely curtails their capacity to integrate cutting-edge technologies, including GenAI, negatively impacts their business agility, and limits their ability to innovate. [1]

Applications

Applications SDLC Agile Enterprise

Key Takeaways From ForAllSecure's, “Achieving Development Speed And Code Quality With Behavior Testing” Webinar

ForAllSecure

AUGUST 21, 2019

When guided fuzzing is coupled with a new research area known as symbolic execution, this accepted technique takes on automation and even autonomous characteristics that now allow it to fit seamlessly into DevOps environments to boost -- not hamper -- developer productivity. This next-generation DAST technique is known as behavior testing.

Development

Development Security Devops Applications

Reimagine application modernisation with the power of generative AI

CIO Business Intelligence

JANUARY 15, 2025

According to research from NTT DATA , 90% of organisations acknowledge that outdated infrastructure severely curtails their capacity to integrate cutting-edge technologies, including GenAI, negatively impacts their business agility, and limits their ability to innovate. [1]

Applications

Applications SDLC Agile Enterprise

Key Takeaways From ForAllSecure's, “Achieving Development Speed And Code Quality With Behavior Testing” Webinar

ForAllSecure

AUGUST 21, 2019

When guided fuzzing is coupled with a new research area known as symbolic execution, this accepted technique takes on automation and even autonomous characteristics that now allow it to fit seamlessly into DevOps environments to boost -- not hamper -- developer productivity. This next-generation DAST technique is known as behavior testing.

Development

Development Security Devops Applications

KEY TAKEAWAYS FROM FORALLSECURE’S, “ACHIEVING DEVELOPMENT SPEED AND CODE QUALITY WITH NEXT-GENERATION FUZZING” WEBINAR

ForAllSecure

AUGUST 21, 2019

When guided fuzzing is coupled with a new research area known as symbolic execution, this accepted technique takes on automation and even autonomous characteristics that now allow it to fit seamlessly into DevOps environments to boost -- not hamper -- developer productivity. This next-generation DAST technique is known as behavior testing.

Development

Development Security Devops Applications

Information Technology Zone

How G-Research Used TuringBots To Transform Software Development

Reimagine application modernisation with the power of generative AI

Webinars

Trending Sources

Broadcom launches VMware Tanzu Data Services

Webinars

Unlocking the potential of generative AI in the software development life cycle

3 ways CIOs are leading the way to an AI-enabled enterprise

Is it worth measuring software developer productivity? CIOs weigh in

When least privilege is the most important thing

Why Fuzz Testing Is Indispensable: Billy Rios

Safeguarding Ethical Development in ChatGPT and Other LLMs

Agile Process Improvement Using. Agile! - Social, Agile, and.

10 Stages of the software development lifecycle for startups

The FuzzCon 2021 Real Talks Panel

How Fuzzing Redefines Application Security

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

Leveraging Fuzz Testing to Achieve ED-203A / DO-356A

FuzzCon 2021 Addresses Ease-of-Use in Fuzz Testing

Breaking Down the Product Benefits

Breaking Down the Product Benefits

Challenging ROI Myths Of Static Application Security Testing (SAST)

The Hacker Mind Podcast: Hacking With Light And Sound

The Hacker Mind Podcast: Hacking With Light And Sound

The Hacker Mind Podcast: Hacking With Light And Sound

Challenging ROI Myths Of Static Application Security Testing (SAST)

Challenging ROI Myths Of Static Application Security Testing (SAST)

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

The CyberWire Daily Podcast EP. 389 With Guest Speaker David Brumley

THE CYBERWIRE DAILY PODCAST EP. 389 WITH GUEST SPEAKER DAVID BRUMLEY

Reimagine application modernisation with the power of generative AI

Key Takeaways From ForAllSecure's, “Achieving Development Speed And Code Quality With Behavior Testing” Webinar

Reimagine application modernisation with the power of generative AI

Key Takeaways From ForAllSecure's, “Achieving Development Speed And Code Quality With Behavior Testing” Webinar

KEY TAKEAWAYS FROM FORALLSECURE’S, “ACHIEVING DEVELOPMENT SPEED AND CODE QUALITY WITH NEXT-GENERATION FUZZING” WEBINAR

Stay Connected