News

Watchfire Unveils Web Security Solutions

Watchfire has released AppScan 7.6, the latest installment of its application vulnerability analysis tool, and has rolled out a debut of AppScan OnDemand, a service for checking the security exposure of Web applications.

The new AppScan 7.6 release is geared to further automate application security testing for in-house software deployment. New features in the latest release, available now for $14,400, include:

  • PHP fix recommendations that help developers address issues on the PHP platform, as well as ASP.NET and J2EE.
  • A new SQL Injection Exploit extension available from axf.watchfire.com that attempts automatic extraction of database tables to detect dangerous SQL injection vulnerabilities.
  • A Developer Essentials Test Policy to help developers optimize Web application security.
  • Forty-one out-of-the-box compliance reports, such as the new National Institute of Standards and Technology 800-53 and the latest Open Web Application Security Project Top Ten 2007, along with a new AppScan Reporter for Microsoft PowerPoint extension for creating presentations of scan results directly into PowerPoint.

The new AppScan OnDemand service caters to firms with minimal or no application security knowledge, as well as to firms checking the security of business partner apps. The OnDemand service comes in three tiers, starting at $5,000, with the following options:

  • Basic vulnerability assessment. An option to check simple applications, in which Watchfire staff run AppScan, analyze the results and offer recommendations.
  • Comprehensives service. An option offered for medium-to-large apps with a large degree of user access. Watchfire specialists scan via AppScan and then manually test and exploit their findings.
  • Advanced service. An option that combines a comprehensive security test and manual testing to put massive, intricate applications through their paces.

About the Author

David Kopf is a freelance technology writer and editor.

Featured

  • Microsoft Bolsters Windows IoT with NXP and SQL Server Support

    Microsoft's Internet of Things (IoT) product line is continuing to grow, with a few new developments highlighted this week.

  • Tamper Protection Now Available to Microsoft Defender ATP Subscribers

    The Microsoft Defender Advanced Threat Protection (ATP) E5 subscription plan now has an optional "tamper protection" security feature, Microsoft announced on Monday.

  • Exploring OCR, a New Way To Get Data into Excel

    Microsoft recently added a new optical character recognition feature to Excel that lets users import data from a photograph taken from a smartphone. Here's how to use it.

  • Microsoft Authenticator App To Get Real-Time Phishing Protections

    Microsoft is working on adding capabilities to its Microsoft Authenticator app to help defeat security breaches enabled by advanced attack techniques, including phishing and man-in-the-middle methods.

comments powered by Disqus

Office 365 Watch

Sign up for our newsletter.

Terms and Privacy Policy consent

I agree to this site's Privacy Policy.