Key Benefits
 
Best of Breed Security Detection User Interface
& Usability SDLC Integration
    • Identification of Business Risks – Identifying vulnerabilities which pose a real threat and have a real impact on the organization if exploited by attackers.
    • Runtime Code Execution Analysis – Analysis of actual code execution in runtime ensures the highest level of accuracy.
    • Real-Time Data Flow Tracking – Monitoring data flow allows analysis of real application transactions and business processes, identifying complex data handling vulnerabilities.
    • Accurate Detection of all vulnerability classes, providing true OWASP Top 10 coverage.
    • Logical & Complex Vulnerabilities – Detection of logical, data-related and complex vulnerabilities spread across multiple components. Vulnerabilities not detected by other technologies, such as: Unauthenticated Access, Persistent XSS, CSRF, Parameter Tampering, Insecure Storage of Passwords or Credit Card Information, etc.
    • Exploit Verification – Verification of vulnerabilities through proof of concept exploits, fully validating vulnerability existence and exploitability while demonstrating actual threat.
    • False Positive Elimination – Through runtime analysis and exploit verification.
    • n-Tier Application Analysis – Following application execution through n-Tier architectures, including back-end, web services and stored procedures execution.
    • Enterprise Security Intelligence – Combining analysis technologies and correlating real business data, increasing the value of results for the organization.
  • No Security Expertise Required – Vulnerabilities are presented in an easy to understand manner alongside a screenshot and video of the exploit, emphasizing the threat.
  • Intuitive Screenshot Based UI – Designed to be used by application developers and QA.
  • Exploit Videos – Demonstration of vulnerabilities through a video-documented exploit enables the user to easily grasp the impact of the vulnerability and its associated risk.
  • Threat Oriented – Vulnerabilities are reported according to their threat level, allowing concentration of resources where it counts the most.
  • Simple Mitigation Solutions – Technical details pinpointing vulnerable code and application memory during the exploit help identify the flaw origin. Detailed remediation recommendations with code samples allow for easy mitigation of identified flaws.
  • Easy Deployment – Minimal configuration is required, thanks to fully automatic detection of n-Tier execution and database access.
  • Designed for QA & Developers – Easy integration with test and development environments.
  • Fast – Allows Ongoing Testing – Short test cycles allow it to be used as part of routine manual or automated testing.
  • Automatic Testing Integration – Designed for integration with build servers and automatic tests as part of regression and nightly tests.
  • Automatic Ticketing Integration – Automatically creates tickets for identified vulnerabilities.
  • Comparative Reports – Tracks application security lifecycle, simplifying the remediation process with easy progress monitoring.