About IBM Security AppScan Source

IBM Security AppScan Source can identify and fix vulnerabilities in web and mobile applications prior to deployment, reducing the time and effort required by organisations in development. IBM Security AppScan Source integrates cognitive capabilities such as Intelligent Finding Analytics (IFA) into the software development lifecycle, decreasing time and effort required to identify and repair vulnerabilities. It's know for the intuitiveness and intelligence in detection and repairing.

 

Specification

Deployment

  • Web

    web-based

Operating system

  • W

    Windows

Best suitable for

Size :

1-10

11-15

16-200

201-500

501-1000

1001-5000

5000+

Organization type :

SMEs

Mid Market

Enterprise

Govt

PSUs

Startups

Agencies

Industries :

  • ITES

About IBM

International Business Machines Corporation (commonly referred to as IBM) is an American multinational technology and consulting corporation founded in 1911, with corporate headquarters in Armonk, New York.IBM manufactures and markets computer hardware, middleware and software, and offers infrastructure, hosting and consulting services in areas ranging from mainframe computers to nanotechnology.
view more products by IBM

Features

AppScan Source identifies security vulnerabilities in source code during the early stages of the application lifecycle. It builds automated security into development by integrating security source code analysis with automated scanning during the build process. The software scans, triages and manages security policies; and prioritizes assignment of results for remediation. It scans more than one million lines of code per hour; and extends analysis to Android and Apple iOS mobile applications.
AppScan Source defines and enforces consistent policies that can be used throughout the enterprise. It can help enable enterprise-wide metrics and reporting with a centralized policy and assessment database. AppScan Source also provides audit and compliance reports that make it easier to understand application-related threat exposures at the executive level.
AppScan Source integrates with defect tracking systems (DTS), software configuration management and build management tools, providing increased security intelligence through correlation of static analysis results with dynamic analysis results. It accommodates a broad portfolio of large and complex applications across a wide range of languages. AppScan Source is built on open architecture to protect your existing investments.
AppScan Source provides visibility into security and compliance risks presented by identified security issues. It delivers more than 40 security compliance reports, including PCI Data Security Standard, Payment Application Data Security Standard, ISO 27001 and ISO 27002, HIPAA, Gramm–Leach–Bliley Act and Basel II. It offers enhanced mobile application scanning capabilities and testing for mobile, web, native, hybrid and Worklight applications by integrating with IBM MobileFirst Studio.
With its cognitive IFA capabilities, AppScan Source helps reduce false positives by up to 98%, alleviating the need for security experts to review findings for false positives before sending them to developers. It helps Identify Fix Groups in your code, enabling developers to save time by addressing multiple issues with a single code change. IFA also helps you to perform Delta Analysis Reporting; display scan-to-scan changes and identify new issues that may have been added.

Plans and Pricing

Web-based

Ibm Appscan source

PRICE ON REQUEST

  • Central Management
  • Compliance Management
  • Automatic Detection
  • Advanced Threat Protection
  • Endpoint protection

Videos

How West Virginia University Protects Sensitive Student Data

Reviews

Add Review
User

Chandramouli Dorai

Evolution in the tooling
Overall

6th February, 2019

Ease of Feature

Ease of Use

Value for money

Customer Service

  • Pros -
  • The technical services to drive tooling adoption are great and would like to see more evolution in the tooling including less false positives, integration with CI/CD and faster adoption of new architecture/labguaged.
  • Cons -
  • No Cons
User

Deepak bhandawat

Offered help
Overall

9th May, 2018

Ease of Feature

Ease of Use

Value for money

Customer Service

  • Pros -
  • Using Techjockey saved me a lot of time. I worked with Brittany Walther. She called me back after what seemed like only a few minutes. From asking a few key questions, she sent me a list of 5 vendors that were appropriate for the size of my organization and were familiar with higher education. Within a day or two I had calls scheduled with all the vendors. It really cut down on the work I had to do. We are still evaluating products but I would not have progress this fast without the help of Techjockey.
  • Cons -
  • No Cons

Is this product information sufficient?