Cyber Security Resources
Improve your cybersecurity by reading our whitepapers and learning from our experts
Take a look at our tools, presentations, and policies
A company asked us for help with a troubling issue: anonymous web site users would randomly become authenticated as other users in their financial services application. The client’s engineering team had no meaningful log data, and wasn’t able to reproduce the issue over many months. They only knew...
Intro - GraphQL GraphQL (GQL) is a popular data query language that makes it easier to get data from a server to a client via an API call. GQL is commonly deployed as a critical piece of the technology stack for modern web and mobile applications, and as a result, Carve has worked with GQL in...
Your best appsec engineer candidate is already on your engineering team. You just don’t know it yet.
There are things you can do to improve application security even if you’re unable to recruit and retain an application security engineer.
Zoom seems to be getting more than its fair share of condemnation from the security researcher community. What is going on?
Hiring an appsec engineer can be a long process, and for many organizations, is one that does not end successfully.
A lot of companies have been quickly forced into a remote-only work environment, and we'd like to help make the security aspect of that reality easier to navigate. Remote work definitely comes with its own unique security challenges and may require both technical changes and process (and...
Stay on top of the latest in cybersecurity tools, news, and opinion with @carvesystems on social media! Check out our blog for cyber tips, tricks, and all things infosec.