Security of Web Applications is one of the most neglected areas of IT security. Large investments in hardware means of system protection are providing a false sense of security, since security failures in system’s application segments cause about 70% of all security incidents (Picture 1).
Picture 1: Gartner’s study showing the disproportion between investments in hardware and application segment of security
Many of our domestic companies became the victims of hacker attacks, even simple Internet browsing will give you ample evidence to that fact.
IBM Rational AppScan is a tool that enables testing of web application vulnerabilities, all in a very short time, concerning tens of thousands of different attack types that would take several months of committed work for even a team of very skilled experts.
How does it work?
Tool usage does not require any special technical knowledge – all it needs is a web address of the application that is to be tested and you to select the wanted test types. After the address has been entered, the tool runs the chosen tests over the application. Scanning results in form of a report show a sorted list of all found vulnerabilities with concrete examples of possible misuse (Picture 2).
Picture 2: Example of tool report
What if my application turns out to be vulnerable? In case AppScan does find vulnerabilities, it is absolutely necessary to deal with the most critical ones first. Recovery from failures in certain cases does not imply extensive modifications, while the nature of other problems requires them to be solved by skilled experts.
Order a free demo testing of your web application - Contact us
