Many Internet web sites still suffer from critical security holes, allowing hackers to steal customer information, or damage the corporate web site. Most of these security holes stem from security vulnerabilities in commercial products, such as web servers or operating systems. However, there is a class of vulnerabilities that result from insecure programming of the custom applications used by the web site (shopping cart, navigation system, and so on).
Beyond Security is launching a new version of its Automatd Scanning Vulnerability Assessment tool in order to provide a complete solution and discover all different classes of security holes. With the "Webscan" component, customers can now scan their web sites for security holes in custom web application.
Adding this web application security scanning ability to its leading vulnerability assessment tool places Beyond Security as the most comprehensive scanning tool available today, scanning at the database level, the operating system level, the network level and now application level.
"The security world is consolidating, and as we see the various firewall products assimilating web application protection technologies. In a similar way, the network Vulnerability Assessment tools will start combining web application scanning capabilities" says Beyond Security's CEO, Aviram Jenik.
Beyond Security is the first company to provide a scanning solution that pinpoints vulnerabilities both in network level and web application level. Until today, those were two separate categories in the security world, each category populated by different vendors.
Aviram Jenik forecasts that in the near future the "Web Application Security" niche will dissappear, as the protection components become a part of the standard firewall solution, and the assessment component becomes a part of the standard vulnerability assessment solution.
Jenik adds: "The web application scanning capabilities of the Automated Scanning tool enables to perform a task that took days or weeks, and transform it into a comletely automated process taking minutes, and repeated periodically to ensure complete protection."
About Beyond Security
Beyond Security, a privately-held company, develops leading vulnerability assessment and self-management solutions that facilitate preemptive, real-time and continuous network, server, database and application security. The company was founded in 1999 by the founders of SecuriTeam portal (www.securiteam.com), a leading source for vulnerability alerts and solutions serving 1.5 million monthly page views to IT security professionals. Beyond Security's founders are great believers in automation, which is why the company sells tools instead of using them to provide services. Beyond Security's goal is to decrease the number of security holes in products to manageable levels and empower software vendors to release secure products. For more information, visit www.beyondsecurity.com.