Information Theorem releases full-stack safety analyzer for contemporary net apps and cloud providers
Information Theorem launched a brand new full-stack safety analyzer known as Net Safe. It’s designed to offer vulnerability evaluation for contemporary net functions from the net layer right down to its embedded APIs and cloud assets.
In keeping with the corporate, the analyzer was constructed for DevOps and safety groups to enhance net software safety testing, and assist establish and remediate potential knowledge breaches in trendy net functions, also referred to as Single-Web page Purposes (SPAs).
“The present technology of net safety instruments are poorly suited to deal with these newer software frameworks, APIs and cloud microservices which might be the underpinnings of those trendy functions,” Information Theorem acknowledged in a submit. “Information Theorem’s Net Safe was designed particularly to assist prospects safe their trendy net functions.”
The answer accommodates a brand new kind of dynamic and run-time evaluation that’s absolutely built-in into the CI/CD course of, and permits organizations to conduct steady, automated safety inspection and remediation of their trendy net functions.
The brand new launch additionally expands the SPA options the corporate launched in September 2019 with a number of new automated hacking safety toolkits that assist prospects perceive the affect of vulnerabilities and exploits all through the entire software stack. SPA SQL injection, SPA XSS safety and Poisonous Tokens are among the many vulnerabilities that Net Safe actively seeks to remediate.
“By 2021, 90 % of web-enabled functions could have extra floor space for assault within the type of uncovered APIs quite than the person interface, a rise from 40 % in 2019. API discovery is vital to understanding what APIs exist,” Gartner acknowledged in a submit.
Information Theorem seen organizations typically turned to a wide range of conventional instruments, scanners and net crawlers for cellular functions and APIs, which has not stored tempo with Agile SDLC velocity.
Net Safe helps to spherical out Information Theorem’s AppSec portfolio to guard organizations from knowledge breaches with software safety safety for contemporary net frameworks, API-driven microservices and cloud assets, based on the corporate.