Glog is a solution that is able to triage issues, flag false positives and then give remediation advice based on context for real vulnerabilities, even more, to automatically fix the security vulnerabilities in your software code without bothering your development teams.

Glog can be used in next variants and options:

  1. Software Security as a Service (SSaaS), Cloud-based solution
  2. On premises solution
  3. Plug-ins for IDEs
  4. Add-on for build and CI/CD systems
Glog Products

Glog adds even more value through:

  • Glog API (Application Programming Interface)
  • GASM – Glog Application Security Management (inventory of software applications and components, repositorium’s SBOM, technologies, programming languages, owners, IDEs, clients using code etc.)
  • Glog Monitor of scan and remediation jobs

We can process scan reports of market leading SAST engines.
We work on developing our own scan engine to address drawbacks of those available on the market.
We interface it with other processes in SDLC: our branded extend to the left of lifecycle (extend2left).

Our solution learns from humans, our branded concept is: [software] security expert in the loop!

Glog.AI can give very precise remediation advice for security vulnerabilities in software code based on specific context.

It is not about code only but involves analysis and implementation of architectural and threat model security controls, correlation with other application security processes and tools through the entire SDLC (Software Development Lifecycle).

Glog.AI platform overview document.

We also offer our Services. See Glog Advantages.

Want to see estimate how much remediation will cost without Glog.AI? See our Calculator.

Partner with the Glog team on a mission to make software more secure. Boost your software immunity, remove vulnerable spots.

It can be integrated with:

  • GitHub
  • GitLab
  • Bitbucket
  • and other code collaboration and version control tools.

Glog solution can serve as add-on for remediation advice for SAST and SCA tools such are:

  • AppScan
  • Checkmarx
  • Fortify
  • Veracode
  • Coverity
  • Sonatype
  • WhiteSource
  • SonarQube
  • and other SAST and SCA tools

Glog solution helps you to reduce or eliminate security debt. Otherwise, it will grow and can reach a level which you might not be able to resolve in future.

Here are some talks and presentations. For more, check: Resources and Events.

Webinar: “How Enterprises Can Secure Their Web Application Against Attacks” EC-Council University, EC-Council, CISO MAG, Date: February 22, 2022

DevOps Enterprise Summit 2021, Virtual – US on October 5-7, 2021

Dragan Pleskonjic, Colin Bell, Robert Cuddy: “Making It Easier to do the Right Things: Govern, Measure and Audit DevSecOps” – October 5, 2021, Video

Webinar: Why is Application Security Important for Your Business? EC-Council University, EC-Council, CISO MAG

What is the Present and Future of Software Security? EC-Council University, EC-Council, CISO MAG

Data Science Conference Europe 2020, November 15 – 19, 2020. | Keynote talk on November 19, 2020: “ – software security solution”

Shifting Priorities of Digital Native Security | WhiteSource

Automate your security tasks with REST APIs