SBIR Phase 2: What’s Next in ThreadFix’s Hybrid Analysis Mapping?


We’ve been heads-down working and haven’t had a chance to talk much about this, but Denim Group was awarded a SBIR Phase 2 contract to continue the development of the Hybrid Analysis Mapping (HAM) that we’ve been including in ThreadFix. (You can also check out what we did during SBIR Phase 1) This technology allows us to merge SAST and DAST scan results and also supports some other exciting use cases like pre-seeding DAST scanners with attack surface data and mapping DAST results to specific lines of code in developer IDEs.

So – what new stuff should you expect in the coming months?

If you have any questions about what we’re working on or if you are interested in early access to these technologies, please feel free to reach out.

About John Dickson

John Dickson web resolution

John Dickson is an internationally recognized security leader, entrepreneur and Principal at Denim Group, Ltd, the parent company of ThreadFix. He has more than 20 years' hands-on experience in intrusion detection, network security and application security in the commercial, public and military sectors. As a Denim Group Principal, he helps executives and Chief Security Officers (CSO's) of Fortune 500 companies, including major financial institutions, launch and expand their critical application security initiatives.