Rational AppScan Build Edition

Automated application security embedded into the build process

IBM® Rational® AppScan® Build Edition software enables development teams to integrate application security testing into their build verification processes. Now you can scale your testing, achieve better coverage and identify vulnerabilities earlier in the software development lifecycle.

Rational AppScan Build Edition software supports a philosophy of Secure by Design, which enables proactive strategies for comprehensively and cost-effectively addressing enterprise risk.

  • Automate security testing in the build environment.
  • Support next-generation accuracy through dynamic, static and string analysis.
  • Enable security testing coverage of all applications driven through the build process.

Automate security testing

  • Embeds security testing into the development lifecycle to identify vulnerabilities in the build environment.
  • Automates security analysis, user collaboration and reporting.
  • Improves productivity with intelligent fix recommendations.
  • Helps development organizations address the volumes of security issues that can be introduced into code.

Support next-generation accuracy

  • Combines static and dynamic analysis techniques to help ensure complete scanning coverage, including automated JavaScript execution, auto-flash parsing and web-service testing.
  • Provides string analysis, which automates the detection of validation routines and execution during code analysis. This patent-pending, breakthrough technique from IBM helps eliminate false positives and avoid false negatives, and it supports different methods of handling inputs.
  • Offers hybrid analysis, which combines analysis techniques to correlate results, when deployed with Rational AppScan Enterprise Edition or Rational AppScan Reporting Console software.

Enable security testing coverage of all applications

  • Supports a wide range of languages, including Java®, C and C++, ASP.NET, PHP and Perl.
  • Features simple and powerful interfaces to easily fit into almost any build environment.
  • Offers integrated, flexible reporting capabilities that can deliver results to several systems to provide a web-based, multi-user application reporting system.

Rational AppScan Build Edition resources

  • Trial software: Rational AppScan

    Download a full-featured, trial version of Rational AppScan for an unlimited evaluation period. Use the trial with a predefined template to scan a test website.

IBM Software
See what smarter software can do for you

Buy Rational AppScan Build Edition

Automated application security embedded into the build process

IBM Software Subscription and Support is included in the product price for the first year.

Download software online after purchase - no shipping costs.

Not available to purchase online. Other ways to purchase or learn more.

Contact IBM

MoreLess


System requirements
Operating SystemSoftwareHardware
For IBM Rational AppScan Build Edition static analysis engine
  • Microsoft Windows 7 Professional, Enterprise & Ultimate 32 and 64-bit (in 32-bit mode)
  • Microsoft Windows XP Professional (SP2, and higher)
  • Microsoft Windows Vista Business, Enterprise & Ultimate (SP1) 32 and 64-bit (in 32-bit mode)
  • Microsoft Windows Server 2003 Enterprise (SP2, and higher)
  • Microsoft Windows Server 2008 Enterprise
  • Microsoft Windows Server 2008 R2 Enterprise (in 32-bit mode)
  • RedHat Enterprise Linux 4.0 Workstation & Server
  • RedHat Enterprise Linux 5.0 Workstation & Server 32 and 64-bit (in 32-bit mode)
  • Solaris 9 (IBM Rational AppScan Source Edition for Automation only)
  • RSolaris 10 (IBM Rational AppScan Source Edition for Automation only)
For IBM Rational AppScan Build Edition static analysis engine
  • Project Files: Visual Studio .NET 2003, Visual Studio 2005, Visual Studio 2008, WebSphere Studio, Application Developer 5.1, Eclipse 3.1, 3.2, 3.3, 3.4, 3.5 and 3.6, IBM Rational Application Developer V6.0, V7.0 and V7.5
  • Compilers: GNU compiler Collection (gcc) for Linux, Microsoft Visual Studio 6.0 (V6), Visual Studio.NET (V7, Visual Studio .NET 2003 (V7.1), Visual Compilers: GNU compiler Collection (gcc) for Linux, Microsoft Visual Studio 6.0 (V6), Visual Studio.NET (V7, Visual Studio .NET 2003 (V7.1), Visual Studio 2005 (V8) for Windows, Visual Studio 2008, Sun Studio C and C++ Compilers for Linux and Solaris
  • Language Support: Java™, ClientSide JavaScript, JSP, ColdFusion, C, C++, .NET (C#, ASP.NET, and VB.NET), Classic ASP, (JavaScript/VBScript), HTML, PHP, Perl, VisualBasic 6
    IDE support: Eclipse versions 3.2, 3.3, 3.4 and 3.5, 3.6; IBM Rational Application Developer V7.0 and V7.5; Visual Studio .NET 2003, 2005, and 2008
  • IDE support: Eclipse versions 3.3, 3.4 and 3.5; IBM Rational Application Developer V7.0 and V7.5; Visual Studio .NET 2003, 2005, and 2008
  • Defect Tracking System support: IBM Rational ClearQuest® V7.0, V7.1.1; HP Quality Center 9.2; Rational Team Concert 2.0.0.2; Microsoft Team Foundation Server 2008
For IBM Rational AppScan Build Edition static analysis engine
  • Processor: Intel Pentium P4, 3.0 GHz or faster
  • Memory: 2 GB RAM minimum
  • Disk Space: 1.5 GB (2 GB required for installation)
  • Network: 1 NIC 10 Mbps for network communication with configured TCP/IP (100 Mbps recommended)
  • Drives: CD-ROM or DVD-ROM drive
For IBM Rational AppScan Build Edition dynamic analysis engine

Supported operating systems (32–bit and 64–bit editions, in 32-bit mode):

  • Windows XP: Professional, SP2 and SP3
  • Windows 2003: Standard and Enterprise, SP1 and SP2
  • Windows Vista: Business, Ultimate and Enterprise, SP1 and SP2
  • Windows Server 2008: Standard and Enterprise, SP1 and SP2
  • Windows 2008 R2: Standard and Enterprise
  • Windows 7: Professional, Enterprise and Ultimate

    • Note: Rational AppScan smart tags, which are used when creating custom reports, are not supported on Windows Vista or Windows Server 2008.
For IBM Rational AppScan Build Edition dynamic analysis engine
  • Microsoft Internet Explorer Version 6 or later
  • Microsoft .NET Framework Version 2.0 or later (Version 3.0 or later is required for some optional, additional functionality)
  • Optional: Adobe Flash Player for Internet Explorer, Version 9.0.124.0 or later is required for Flash execution, and for viewing instructional videos in some of the advisories. Earlier versions are not supported, and some versions might require configuration. For details, see the documentation.
  • Optional: Microsoft Word 2003 or 2007 for using AppScan smart tags to insert fields for custom report templates. If you use Word 2003 the following update must also be installed: Update for Office 2003: KB907417 (link resides outside of ibm.com)
  • Defect Tracking System support: IBM Rational ClearQuest® V7.0, V7.1.1; HP Quality Center 9.2, 10

Important:

  • Customers without a local license on their computer require a network connection to their Rational licensing server when using AppScan.
  • A personal firewall running on the same computer as Rational AppScan might block communication and result in inaccurate findings and reduced performance. For best results do not run a personal firewall on the computer that runs Rational AppScan.
For IBM Rational AppScan Build Edition dynamic analysis engine
  • Processor: Intel Pentium P4, 2.4 GHz
  • Memory: 2 GB RAM
  • Disk Space: 30 GB
  • Network: 1 NIC 100 Mbps for network communication with configured TCP/IP

Considering a purchase?

Contact IBM

Considering a purchase?

Rational AppScan Build Edition

IBM Software