Blog

Investigación, write-ups, tutoriales.

Cómo cambia AppSec cuando los agentes escriben el código. Fallos lógicos, MCP, seguridad agent-time. Nuevo cada semana.

Why your scanner reports 1,200 vulnerabilities and only 12 are real

Open any SAST report on a working codebase and you will see hundreds of red flags. A field guide to what reachability, exploitability and business logic actually mean, and why pattern scanners cannot tell them apart on their own.

Apr 28, 20269 min readLeer artículo

Todos los posts

3 artículos

ResearchApr 15, 2026

The $0 Shopping Cart: Why Your "All-Green" SAST Report Is Lying To You

Their CI/CD was perfect. Snyk was running. Dependabot was watching. Every indicator showed green. Ten minutes into the audit, I bought their entire inventory for €0.

CYBEDEFEND5 min read

ResearchApr 8, 2026

The Evolution of Secure by Design in the AI Era

AI is redefining Secure by Design, turning static security into a proactive, intelligent defense. Discover how AI agents predict and prevent threats before they happen.

CYBEDEFEND7 min read

Empieza

Instalación gratis en tu IDE. Primer escaneo en 5 minutos.

Sin tarjeta. Sin llamada de configuración. Elige tu agente, pega el comando, y Cybe aplica tus reglas desde el siguiente prompt.

Región

claude mcp add cybedefend --transport http https://mcp-eu.cybedefend.com/mcp

MCP alojado, sin instalación. Solo registra la URL en tu agente.

Reservar una demo de 20 min