Rational AppScan Standard Edition

Une édition d'IBM Rational AppScan qui permet d'analyser en profondeur la sécurité des applications Web

IBM Rational AppScan Standard Edition est un outil de test de la sécurité des applications Web qui automatise la recherche et l'évaluation des vulnérabilités.

Rational AppScan Standard Edition permet de rechercher les vulnérabilités avec des coûts moindres qu'en mode manuel et aide à se protéger contre les menaces que représentent les cyber-attaques en automatisant l'analyse de la sécurité pour la détection des failles exploitables.

  • Permet d'exécuter des tests complets et automatisés des applications Web pour la détection des vulnérabilités.
  • Recherche 100 % intégrée des logiciels malveillants (US) : analyse les sites Web afin d'y détecter tout logiciel malveillant ainsi que tout lien vers des sites malveillants ou indésirables.
  • Fonctions de personnalisation et d'extensibilité : AppScan eXtension Framework (US) permet à la communauté d'utilisateurs de créer et de partager des modules complémentaires en source ouverte.
  • Automatise le travail des testeurs spécialistes des intrusions : des utilitaires de test sophistiqués et le système Pyscan viennent compléter les tâches de test manuel, d'où un supplément de puissance et d'efficacité.
  • Permet d'effectuer des tests de sécurité pour la détection des nouvelles vulnérabilités Web : inclut désormais des tests permettant de détecter l'injection de flux RSS à distance, le code ActiveX vulnérable, les téléchargements de fichiers, la divulgation de code source Flash, etc.
  • Génération de rapports sur la conformité aux réglementations : 40 rapports de conformité prêts à l'emploi, notamment pour les normes PCI Data Security Standard, Payment Applications Data Security (PA-DSS) (nouveau), ISO 27001, ISO 27002 et Bâle II.

En savoir plus

Logiciels IBM
Découvrez comment les logiciels intelligents répondent à vos besoins.

Acheter Rational AppScan Standard Edition

La 1ère année d'IBM Software Subscription and Support est inclus dans le prix d'achat.

Téléchargement en ligne du logiciel après achat - pas de frais de transport.

En savoir plusFermer

Features and Benefits

IT auditors and compliance officers are looking for a process to test Web application security controls so that their Web applications are not exposed to vulnerabilities that can be exploited by hackers. AppScan® Standard Edition automates vulnerability testing, so customers can integrate security testing into the Web application development process for new or existing applications.

IBM Rational AppScan Standard Edition is an industry-leading Web application security testing solution that includes: 1.) Dynamic analysis (black box testing)to test for all common web application vulnerabilities, 2.) glass box testing for run-time analysis – a form of integrated application security testing (IAST), and 3.) Static analysis (white box testing) of JavaScript to identify client-side vulnerabilities.

  • Identifies web application vulnerabilities including all relevant WASC TCv2 threat classes, such as SQL-Injection, Cross-Site Scripting and Buffer Overflows

  • Includes new glass box analysis for run-time analysis that adds an internal agent to the application to monitor behavior during a dynamic scan and deliver new benefits such as: full coverage of OWASP Top 10 threats and line of code details for specific vulnerabilities to match proof of exploit with the precise defect that created the vulnerability

  • Applies static taint analysis with JavaScript Security Analyzer to identify client-side security issues, such as DOM-based cross site scripting, code injection, Open Redirect, CSRF Bypass, Dual Session, Port Manipulation and Protocol Manipulation

  • Provides broad application coverage for Web 2.0/Rich Internet Applications with support for AJAX, Adobe Flash/Flex, etc.

  • Includes enhanced support for Web Services and Service Oriented Architecture including SOAP and XML

  • Includes advanced testing utilities to expand custom security testing by combining the power of AppScan with Pyscan scripts for more powerful and more efficient manual testing

  • Generates advanced remediation capabilities including a comprehensive task list to ease vulnerability remediation

  • Simplifies security testing for non-security professionals by building scanning intelligence directly into the application

  • Features over 40 out-of-the-box compliance reports including PCI Data Security Standards, ISO 17799, ISO 27001, Basel II, SB 1386 and PABP (Payment Application Best Practices)

  • Simplified scan results through the new Results Expert wizard, further simplifying the process of interpreting scan results through scan-specific descriptions and straight forward explanations of each issue

  • Integrates with defect tracking systems, such as Rational Team Concert, Rational ClearQuest and HP Quality Center

Des moyens d'achats faciles ou en savoir plus.

Besoin d'aide ?

Des moyens d'achats faciles ou en savoir plus.

Rational AppScan Standard Edition

Logiciels IBM

*Pricing:  IBM Price excluding tax is above. IBM price including tax is La taxe est de 22,312.58. For pricing inclusive of applicable sales taxes, "Tax" implies GST, VAT or other taxes that may be applicable for purchases in your country. Catalog prices are subject to change without notice. Taxes shown are estimates only and may be recalculated based on the billing and shipping address advised during check out. Passport Advantage customers will see their Relationship Suggested Volume Pricing during checkout.