Vendor Deep Dives

What is a Runtime CNAPP Anyways?

A Deep Dive on Sweet Security

Jun 5 •

RSAC 2025 Thoughts and Takeaways

The Struggle to Stand Out is Real

May 5 •

Everything to Know about Runtime Reachability

The final part of our reachability saga

Apr 15 •

What is Code to Cloud, and Does it Matter?

Looking at the different types of Code to Cloud and their methodologies

Mar 27 •

The Great CNAPP Re-bundle

The people that built CNAPP have moved on

Mar 13 •

Announcing OpenGrep

And the importance of a commoditized SAST

Jan 23 •

Wiz Defend-ing Their Flank

An early preview of Wiz Defend, and the next 5 years of runtime focused CNAPP

Dec 4, 2024 •

Comparing Static and Runtime Reachability

Revealing the pros and cons of two emerging types of reachability

Oct 31, 2024 •

Why and How to Implement Seccomp Policies

Explaining the use cases and how to implement an under-discussed Kubernetes feature

Oct 10, 2024 •

What do I think about Wiz Code?

Answering my most received question from the last 2 weeks

Oct 3, 2024 •

Comparing Aikido and Snyk for SCA Scanning

A small step towards total market coverage

Sep 24, 2024 •

Vulnerability Management Part 1 - Assets and Fixes

A three part series detailing what data is helpful for operationalizing vulnerability management (1/3)

Sep 17, 2024 •

#nojs-banner { position: fixed; bottom: 0; left: 0; padding: 16px 16px 16px 32px; width: 100%; box-sizing: border-box; background: red; color: white; font-family: -apple-system, "Segoe UI", Roboto, Helvetica, Arial, sans-serif, "Apple Color Emoji", "Segoe UI Emoji", "Segoe UI Symbol"; font-size: 13px; line-height: 13px; } #nojs-banner a { color: inherit; text-decoration: underline; } This site requires JavaScript to run correctly. Please turn on JavaScript or unblock scripts