Anyone in here work at Wiz? Seem like they do pretty good work. Tool itself has survived extreme growth/feature bloat and still does pretty well. Security team has found some really cool stuff.
Anyone in here work at Wiz? Seem like they do pretty good work. Tool itself has survived extreme growth/feature bloat and still does pretty well. Security team has found some really cool stuff.
Lots of Unit 8200 peeps.
Interesting how people sourcing these softwares say China = bad, but Israel = good.
"Trusted by more than 50% of Fortune 100 companies".
You choose to give your most precious data and the keys of infrastructure whose job was to steal information and with people that are still NSA/8200 employees.
Don't be surprised if one day they are compelled to share data or find dirt on people (they protect one well known LLM company).
It doesn't mean they are doing it, but clearly the incentive for it exists.
it is too noisy, we just run a custom pipeline which scans with osv-scanner/trivy for critical
I'm not there, but we use it at our place. It triggers on entirely innocent things I do.
And yet when I do something a bit dodgy (like query a DC with a cli, and reset credentials) it's silent...