Introducing Security Sidekick, a brand new company that plans to approach application security from a different angle.
First, let’s tell the story of how we got started, then we'll tell you about our application security breakthrough technology.
Aaron and Tanya met at AppSec EU, 2017, in Belfast, Ireland. Yes, that’s right, two Canadians who lived relatively close to each other (400 KM is ‘close’ in Canada) had to cross an ocean to meet each other at an OWASP conference. They were both working as PenTesters at the time, and both doing public speaking, and they decided to keep in touch. They shared talk ideas, blog posts, feedback, job posts, and career ideas. In fact, it was Aaron that introduced Tanya and got her the interview at Microsoft. They both also transitioned from PenTesting to AppSec around the same time as well, wanting to get to the root cause of security issues, instead of coming in near the end of the system development life cycle. Eventually they did what any two AppSec nerds would do; they decided to build their own product.
With this in mind, they decided that they wanted to try to solve the entire problem of insecure web apps, starting at the beginning. But where is the beginning you may ask? Look at the image below, which we like to call ”AppSec Building Blocks”.
See that bottom, bedrock item – “Application Inventory”? That’s where we decided to start.
Introducing our first product: real-time web application inventory and vulnerability discovery.
We’ll tell you more in future blog posts.