Author Archives: Dan Cornell

A globally recognized application security expert and the creator of ThreadFix, Dan Cornell holds 20 years of experience architecting, developing and securing web-based software systems. As the Chief Technology Officer and a Principal at Denim Group, Ltd, the parent company of ThreadFix, he leads the technology team to help Fortune 500 companies and government organizations integrate security throughout the development process.

More Posts by Dan Cornell

Applied ThreadFix: Application Portfolio Tracking

  Asset management is a serious issue across the information security space. A very common challenge we see for organizations running an application security program is just getting an idea of what applications they have available and what infrastructure has... Read more…

Please Stop Managing Vulnerabilities in Excel Spreadsheets

This blog has been updated with new information for 2020. Do your best Excel users work in application security? Are you trying to manage thousands of vulnerabilities across hundreds of applications in an increasingly elaborate series of Excel spreadsheets? Most... Read more…

Applied ThreadFix: Effective Security Team Collaboration

Modern enterprises are distributed. Most ThreadFix deployments have stakeholders spanning development and security teams and those team members are spread around the globe. To support these distributed organizations, ThreadFix has a number of collaboration features that make teams more efficient... Read more…

ThreadFix Performance Benchmarking: 2.7.5

The major push that went into the 2.7.5 ThreadFix development effort was to increase performance and scalability. As ThreadFix deployment have become larger and as the shift to DevOps means that test results are coming more frequently, we needed to... Read more…