55% of App's Security Vulnerabilities Missed

I happened to be at New York’s OWASP meeting and saw Jeff deliver the slides. The slide that was the most contentious is the one that Mark also noticed [img]. The implication is that if you run every security tool against your codebase, you will at best cover 45% of the known classes of vulnerabilities.

Read the article HERE.