CodeOne
Company
About Us
Company History
Major Certifications and Awards
Clients
Contact Us
Products
AppScan Management System
Sentinelle
Codeone Extinelle
HCL AppScan
HCL AppScan Standard
HCL AppScan Source
HCL AppScan Enterprise
IBM Security Qradar
IBM Security Qradar SIEM
IBM Security Qradar SOAR
IBM Security QRadar UBA
OpenText
Open Text Fortify Sonatype
Open Text Fortify SCA
Open Text Fortify SSC
Open Text Loadrunner
Group-IB
Group-IB ASM
Research
Security Research Lab
Research Areas
Research Lab Composition
Partners
IBM
HCL
OpenText
Paloalto
Group-IB
Services
System vulnerability diagnosis
Source code vulnerability diagnosis
Web Vulnerability Diagnosis
언어 선택

HCL

AppScan Source

What is Appscan Source?

HCL AppScan Source

HCL AppScan Source automates static application security testing (SAST) to protect against web application attacks and

incidents causing massive economic damage.

It explores security risks in application source code and detects vulnerabilities.

Product Introduction

Product Features

Integration

Analysis

Results

Compatibility

1. Integrated Diagnostic Environment within Development Cycle

AppScan Source has a flexible license structure,
providing a deployment model and vulnerability management environment for smooth inspection management across various development environments.

통합된진단환경제공

Product Introduction

Key Functions

Accommodating a Wide Portfolio of Applications

- Many applications are each created with diverse languages and development environments.
- AppScan supports and analyzes the following regular development languages for project analysis.

Supported Languages (as of V10.0.8)

.NET(C#, ASP.NET, VB.NET)
Angular
Apex API
C++
ColdFusion
Django
Groovy
lonic(as part of JavaScript supprot)
JavaScript & framework support (e.g. AngularJS, Node.js, React)
Kotlin
Objective C
PL/SQL, T-SQL
Python
Ruby
Scala
Symfony
TypeScript

Andorid Java
AngularJS(as part of JavaScript support)
ASP(JavaScript/VBScript)
COBOL
Dart
Go
Infrastructure as Code
Java
JavaServer Pages
Microsoft Visual Basic
PHP
Perl
React Native
SAP ABAP
Swift
Terraform
Vue.js

Vulnerability Matrix

- HCL AppScan Source classifies found vulnerabilities into 9 categories.
- From the found results,

· It distinguishes between trusted and untrusted for identified vulnerabilities.
· The tool makes a primary classification of security issues, providing the advantage of quicker remediation work.
· When removing vulnerabilities, you can focus on risk based on priority (trusted ones first).

취약성 매트리스

Product Introduction

Expected Benefits

Without policies and understanding of software development security, enterprises always face security incident risks.

Consistent application of security policies, establishment of secure development processes, and continuous security testing at all stages

address application vulnerabilities and fundamentally solve security issues to deliver highly reliable services.

Operational Efficiency

·

Companies can reduce costs and risk exposure by identifying web-based and mobile application source code vulnerabilities early in the software development lifecycle and fixing them before deployment.

Security Best Practices through Centralized Management

·

With AppScan Source, you can define and enforce consistent policies that can be used across the enterprise.

·

Enterprise-level statistics and reporting are available through centralized policy and assessment databases.

·

AppScan Source also provides audit and compliance reports, making it easier for executives to understand application-related threat exposure.

Enhanced Visibility for Security and Regulatory Compliance

·

With AppScan Source, you can gain visibility into security and compliance risks emerging from security issues.

·

You can view more than 40 security compliance reports including PCI DSS, Payment Application Data Security Standard, ISO 27001, 27002, HIPAA, Gramm-Leach-Bliley Act, and Basel II.