July may perhaps positively disrupt and adrenalize the old-fashioned Dynamic Application Security Scanning (DAST) market, in spite of the coming holiday getaway season. The pathbreaking innovation will come from ImmuniWeb, a international application security organization, nicely identified for, among other items, its free Group Version that processes more than 100,000 daily security scans of web and cellular applications.
Today, ImmuniWeb announced that its new products – Neuron – is publicly available. This would be an additional boring press release by a software program vendor, but the folks from ImmuniWeb managed to increase a key sauce that you will unlikely be ready to resist tasting. The DAST scanning service is flexibly readily available as a SaaS, and unsurprisingly incorporates all modern options typically marketed by competitors on the rapidly growing world marketplace, spanning from native CI/CD integrations to advanced configuration of security scanning, pre-programmed or authenticated testing.
But the groundbreaking feature is Neuron’s contractual zero false positives SLA, included into each and every buyer contract. You get your money back for each untrue constructive you place in your vulnerability scanning report – as simple as that – and binding by a lawfully enforceable agreement. The SLA, nevertheless, does not address trivial security warnings, these kinds of as misconfigurations of cookies or HTTP headers.
Furthermore, contrasted to a on line casino, you simply cannot get rich with the SLA – the cash-back again provision is capped by your yearly membership price, producing feeling for anyone from a enterprise perspective. The SLA is valid for web programs, cloud-indigenous microservices, RESTful APIs and all other HTTP/HTTPS targets that you can scan in just one click from the consumer-welcoming Neuron dashboard:
Yet another of Neuron’s activity-altering functions is the unlimited technical guidance out there for all buyers at no supplemental price tag. If you have thoughts about detected vulnerabilities or your application engineers need some aid with remediation of the findings, ImmuniWeb security analysts will be your Northern Star. Other security distributors frequently cost for this selection independently as a highly-priced consulting service, earning their margins on it. This perk helps make Neuron’s price for dollars extremely aggressive amid the unfolding inflation and looming economic downturn that will most likely hit the cybersecurity field also.
Chatting about price, we especially relished Neuron’s packaging and licensing product that delivers some refreshing versatility to the existing DAST market place. Instead of being handcuffed to your concentrate on domains through your total subscription, you may well dynamically modify them – devoid of shelling out an additional dime – as prolonged as your web software or API continues to be the similar. This can be a finances-conserving solution for organizations that frequently transfer their targets in between diverse environments prior to deploying their code into production. Of note, Neuron’s integration with ImmuniWeb’s Attack Surface area Administration (ASM) featuring will make really a large amount of perception the two for DevOps and compliance groups: you can initially illuminate your shadow IT and overlooked web assets, and then greatly enhance your web application security tests program with a holistic and risk-based mostly tests timetable.
In its unique statement for The Hacker Information, ImmuniWeb’s Chief Architect explained that Neuron is just one particular of the key announcements planned by the business for 2022. The Swiss-headquartered vendor has an formidable roadmap to insert even much more products to its portfolio, which currently covers in excess of 20 uses situations spanning from cloud and cell security screening to Dark Web Monitoring. Consolidating danger intelligence and Dark Web knowledge with your software security tests – seems to be a different good concept by ImmuniWeb: it is just not truly worth to scan your site for XSS if you have hundreds of stolen qualifications exposed on the Dark Web, allowing bad men to login. We frankly like the synergizing electric power that ImmuniWeb System provides to its prospects in consumable and actionable manner.
We will retain an eye on ImmuniWeb’s rising current market traction. Following ImmuniWeb for quite a few yrs, we imagine that these people can supply what they assure. Anyway, Neuron is worthy of a try with a free of charge demo.
Located this short article appealing? Comply with THN on Facebook, Twitter and LinkedIn to read through much more special content material we put up.
Some parts of this article are sourced from:
thehackernews.com