IBM® Security AppScan® is a web application and web
services penetration testing solution for the security
- Get a quick start by using a built-in Scan Configuration
- Obtain a thorough security assessment of your web
applications and web services.
- Learn about vulnerabilities and how to resolve them with
comprehensive advisories and fix recommendations.
- Communicate vulnerabilities to development teams using
detailed PDF reports.
- Determine areas of non-compliance to industry
- Automated Dynamic Application Security Testing (DAST) and
Interactive Application Security Testing (IAST) of modern
web applications and services.
- SOAP and REST web services testing, covering XML and JSON
infrastructure. Support for WS-Security standards, XML
encryption, and XML signatures.
- Detailed vulnerability advisories and fix
- Over 40 regulatory compliance reports, including Payment
Card Industry Data Security Standard (PCI DSS), Payment
Application Data Security Standard (PA-DSS), ISO 27001 and
ISO 27002, and Basel II.
- Customization and extensibility with the IBM Security
AppScan eXtensions Framework.
You can download and try IBM® Security AppScan® Standard for
free! The trial version allows you to run sample scans of our
test web application demo.testfire.net. A pre-defined scan
configuration template for this application is included to
help you get started quickly. Please use the following
credentials for authenticating to demo.testfire.net: