Applications are the core interface where our staff and users interact with and within our business. They allow us to store manage and access related information to allow us to get our jobs done… Most large businesses in Australia have numerous applications that are used each day to perform relevant tasks.
Whilst we all have an appreciation of the design creativity and innovation of Application Developers application security is typically not top of mind when they are coding their world changing application.
HCL AppScan, previously known as IBM AppScan, is a family of web security testing and monitoring tools formerly from the Rational Software division of IBM. In July 2019, the product was purchased by HCL Technologies. AppScan is intended to test Web applications for security vulnerabilities during the development process, when it is least expensive to fix such problems. The product learns the behavior of each application, whether an off-the-shelf application or internally developed, and develops a program intended to test all of its functions for both common and application-specific vulnerabilities.
Appknox is a plug and play solution that addresses the whole nine yards of mobile app security which means even the most complex details are detected and presented to you. It is a 4 part security solution comprising of:
Static Application Security Testing (SAST) – A fully automated security test that checks for basic configuration issues in code and the application.
Dynamic Application Security Testing (DAST) – A deeper dive into the app’s transport layer that checks for loopholes in communication between the application and the server.
Application Program Interface Testing (APIT) – Complete server side testing for all mobile app components.
Manual Application Security Testing (MAST) – Introduction of ethical hackers to think like hackers and plug loopholes that outsmart the automated system.