Blog

Insights, tutorials, and best practices for secure development

vulnerability-scanningsecurity-toolsapplication-security+1 more

Vulnerability Scanning Software: What It Does and How to Choose

Vulnerability scanning software finds security flaws in code, dependencies, and infrastructure. Learn key features and how to choose a scanner.

Mar 28, 20263 min read

vulnerability-assessmentsecurity-scanningapplication-security+1 more

Security Vulnerability Assessment: A Step-by-Step Process

A security vulnerability assessment identifies and prioritizes weaknesses in your applications. Learn the six-step process with automated scanning.

Mar 27, 20263 min read

compliancesecurity-scanningsoc2+4 more

Compliance Security Scanning: Meet SOC 2, HIPAA, PCI DSS, and GDPR Requirements With Automated Tools

Compliance security scanning automates evidence collection for SOC 2, HIPAA, PCI DSS, and GDPR. Map scanning tools to controls and stay audit-ready.

Mar 26, 202611 min read

vulnerability-scanningsecurity-toolsopen-source-security+1 more

Free Online Vulnerability Scanner — What You Get and What You Miss

Free online vulnerability scanners help you find security flaws without upfront cost. Learn what free scanners offer, their limitations, and when to upgrade.

Mar 26, 20263 min read

mcpai-securitysecurity+2 more

We Audited 6 Popular MCP Servers. Here's What We Found.

Security audit of the most popular MCP servers reveals 50 vulnerabilities including 11 critical — from SSRF and command injection to authentication bypass and AWS credential exposure. These servers run with elevated privileges in developer environments worldwide.

Mar 25, 202613 min read

web-securitysecurity-scanningvulnerability-scanning+2 more

Web Security Scanners: Types, Tools, and How They Protect Your Applications

Web security scanners detect vulnerabilities before attackers exploit them. Learn scanner types, how they work, and where code-level scanning fits in.

Mar 25, 202611 min read

dastsecurity-testingapplication-security+3 more

What Is DAST? Dynamic Application Security Testing Explained

Learn what DAST is, how dynamic application security testing works, what vulnerabilities it catches, and how it compares to SAST and IAST.

Mar 25, 202613 min read

application-securitysecurity-toolssast+2 more

Application Security Testing Tools: Build a Complete AppSec Stack

Compare application security testing tools across SAST, DAST, SCA, and IAST. Build a testing stack that catches vulnerabilities without slowing CI/CD.

Mar 24, 202611 min read

devsecopsshift-leftsecurity+3 more

DevSecOps Guide: How to Build Security Into Every Phase of Development

Learn what DevSecOps is, how it differs from traditional AppSec, and how to build a shift-left security toolchain across your entire SDLC.

Mar 24, 202615 min read

lovableai-securitysupabase+3 more

How to Secure Lovable Apps: Fix the Vulnerabilities AI Builders Miss

10.3% of Lovable apps have critical RLS flaws. Learn how to find and fix the most common Supabase misconfigurations, harden your AI-generated code, and scan with Rafter before you deploy.

Mar 24, 20269 min read

scadependency-scanningsupply-chain-security+1 more

Dependency Scanning and SCA: The Complete Guide to Securing Your Supply Chain

Dependency scanning and SCA tools find vulnerable libraries before production. Learn how software composition analysis secures your supply chain.

Mar 23, 202616 min read

vulnerability-assessmentsecurity-toolscode-security+1 more

Vulnerability Assessment Tools: How to Choose the Right Stack

Vulnerability assessment tools find security weaknesses in code, dependencies, and infrastructure. Compare SAST, DAST, SCA, IaC, and container scanning to build the right coverage stack.

Mar 23, 202619 min read

Showing 49–60 of 191 posts