@blubracket profile picture
BluBracket (acquired by HashiCorp) @blubracket

BluBracket was acquired by HashiCorp in 2023. Find updated information at our website.

Joined October 2018
  • Tweets 525
  • Following 287
  • Followers 354
175 Photos and videos
We're proud to join @HashiCorp, where we'll work on bringing our secrets-scanning functionality to HashiCorp #Vault. Learn more here: hashi.co/43284DO
1:50
5
390
Tomorrow, October 19, 2022, #Blubracket security experts will have a discussion about results from a research study from ESG. Register for the webinar: Enhancing code security while speeding up git-based development and get a free code security eBook hubs.ly/Q01p-LMm0
1
How to shift left to help security scale with rapid development? Please join us for the code security webinar: Enhancing code security while speeding up git-based development, on October 19, 2022 at 1pm ET, to find out. Register today! hubs.ly/Q01pkW8R0
Walking the Line: GitOps and Shift Left Security Application security expert with leading analyst firm ESG, Melinda Marks, has authored this eBook. Download your free copy now hubs.ly/Q01pkS8_0
You are invited! Please join us for the code security webinar: Enhancing code security while speeding up git-based development, on October 19, 2022 at 1pm ET. hubs.ly/Q01pkTF30
Eryone can make a difference during Cybersecurity Awareness Month. #BluBracket is a proud supporter of Cybersecurity Awareness. Do Your Part. #BeCyberSmart Visit hubs.ly/Q01nZ88s0 to learn more
Happy to help!
David Blevins@dblevins
4 Oct 2022
Sincere thank you to @misterbisson from @blubracket Turns out my aws keys were sitting in a git commit from last year. I shared some Maven debug output and a plugin in the chain printed all private ~/.m2/settings.xml vars and env vars. Their stuff found it. Worth checking out!
1
A secret in a repo is a secret shared. Exploiting secrets committed to code is super fast. Learn how #codesecurity hubs.ly/Q01nN5LQ0
Please join us on October 19, 2022 for a webinar: Enhancing code security while speeding up git-based development. Register today and receive a free code security eBook hubs.ly/Q01nMdnp0
Integrating code security tools with developer workflows - BluBracket: Code Security & Secret Detection #codesecurity #softwaresupplychainsecurity hubs.ly/Q01nJtZP0

What is Vault Radar? | HashiCorp Cloud Platform | HashiCorp Developer

Undersand the targeted use-cases and how Vault Radar works.

developer.hashicorp.com
Companies of all types should consider offering #bugbounties but should also be aware that while these programs might help protect software, the vast landscape of #opensource that enterprises depend on remains at risk bit.ly/3QnCElg @misterbisson details in @securityblvd
3
1
Steps to secure your org involve first eliminating secrets such as passwords, credentials & API tokens in #sourcecode, followed by balancing productive access against unnecessary risk, & then tracking for any leaked code bit.ly/3D6UtC6 @ajayarora explains in @cpomagazine
1
When secrets get committed to repos, they don’t remain secret for long! Check out BluBracket’s new video on our automated #codesecurity tools to help spot dangerous secrets in your code: bit.ly/3BiHrQz

A secret in a repo is a secret shared

Secrets like database access credentials, cloud access keys, SSL ce...

youtube.com
1
Companies of all types should consider offering security bounties for the systems they depend on. People probing security vulnerabilities are looking to get paid, according to BluBracket’s @misterbisson in @SecureWorld article by @drewtodd81 bit.ly/3ACgC8l #bugbounty
1
1
Unmonitored access to code repositories can lead to both external and insider threats, but BluBracket enforces policies for trusted access to repos and monitors developer access to repos. BluBracket’s @pankamal explains in recent post: bit.ly/3pZqxQl #codesecurity
In honor of #LaborDay, BluBracket hopes all of our American followers can enjoy some well-earned time off!
How it started: How it's going:
2
1
No matter what companies do or how they may try to prevent their #sourcecode from leaking, it can still leak. Don't only use tools to prevent the source code from leaking, but also prepare for that eventuality, says BluBracket’s @ajayarora in @securityblvd bit.ly/3RoomS7

LastPass Admits Hackers Stole Source Code, Proprietary Tech Info

The last thing any company that makes its living from security wants is a security incident, but LastPass has confirmed that hackers penetrated the

securityboulevard.com
1
1
Have you seen Gartner Hype Cycle for Application Security and Hype Cycle for Agile and DevOps, 2022? We’re in both! Use this @Gartner_inc research to secure developer environments: bit.ly/3R77VtE #AppSec #DevOps
#DevSecOps will see mainstream adoption in less than two years, listing them as a ‘transformational’ innovation – the highest in @Gartner_inc’s ranking system bit.ly/3K56GJ0 @ITPro

Gartner: Software businesses must adopt DevSecOps before it becomes mainstream

Integration will ultimately help organisations reduce friction between security and development, research firm says

itpro.com
Load more