DerScanner

DerScanner is an application security testing platform that integrates various security testing methodologies into a single, cohesive solution.

The platform integrates several security testing and analysis methods, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Mobile Application Security Testing (MAST), Software Composition Analysis (SCA), and Binary Analysis capabilities.

The tool supports 43 programming languages, encompassing both modern and legacy codebases. This makes it a great fit for organizations that utilize a variety of technology stacks. DerScanner can be deployed on-premises for organizations that have strict data privacy requirements or can be accessed as a cloud service. Key features include: - SAST (Static Application Security Testing) for detecting vulnerabilities in custom code during development. - SCA (Software Composition Analysis) for identifying security issues in dependencies and the supply chain. - DAST (Dynamic Application Security Testing) for testing live web applications from an attacker's perspective. - MAST (Mobile Application Security Testing) for securing mobile applications from code to deployment. - Binary Analysis for securing legacy applications. - Integration with CI/CD (Continuous Integration/Continuous Deployment) pipelines and development tools. - Compliance reporting for standards such as CWE/SANS Top 25, OWASP Top 10, OWASP MASVS, PCI DSS, and HIPAA. DerScanner is specifically designed to assist development and security teams in identifying and fixing vulnerabilities throughout the entire application development lifecycle.

The platform has been acknowledged by Forrester as a significant vendor in both the SAST and SCA categories, and it holds CWE-compatibility certification.