Security At The Source
 
 
Strengthening web applications, reducing security related risk

Contact details
Tel.: + 64 9 309 3902
Fax.:+ 64 9 309 7651
sales@codescan.com
Home About Us Product Info Support News
Overview Features Developer Consultant Enterprise
  Features

Scan, audit and fix in-house or third-party developed code,
with ease

  • Confidently audit and optimize the security of your web applications.
  • Free up time and save money by reducing manual checks of web application source code.
  • Confirm that your developers are building secure systems - Outsourcing development to third parties does not outsource liability;
  • High-level reports as well as detailed technical analysis of vulnerable code.
  • Protect your cash flow with pay-as-you-go subscription-based licensing.
  • Stay ahead of the game with ongoing updates.

Options to suit a wide range of uses - deployment options to suit single developers, large development houses, auditors, security consultants and enterprises.

Multi-language support - available for Microsoft .ASP vbscript and PHP with ASP.Net due by 1Q09. Future versions are planned for Java, Cold Fusion, C, and C++.

Easy to use - intuitive, point-and-click control of its powerful functions.

An extensive updated signature base - includes a substantial knowledge base of vulnerability signatures. Regular updates are available via our website, courtesy of our research and development team, and are included in the subscription price.

Comprehensive scanning – includes testing for common implementation and development issues, including cross-site scripting, SQL injection and user input filtering.

Smart, accurate vulnerability detection - an intelligent analysis engine identifies and locates weaknesses with pin-point accuracy. It combines pattern matching, variable tracking and multi-aspect code inspection with parsing techniques. It’s the complete package.

Automatic ranking of vulnerabilities - results are ranked and can be filtered according to pre-determined settings. This reduces the number of false positives and lets you accurately determine whether a particular vulnerability could be maliciously exploited.

Flexible reporting options - you can select reports that range from high level executive summaries through to detailed technical analysis that enables developers to take action. Reports can even be customized by section and severity thresholds.

Automated fixes or explicit recommendations - with options for an automated code fixing process or explicit remediation advice for developers, CodeScan keeps you in complete control.

Subscription-based licensing – 12 month licensing for CodeScan means no big up-front expense which won’t tie up your valuable capital. CodeScan just gets straight to work so you can reap the benefits and you pay as you go.

trial   buy now
 
Application Assurance

  Security at the Source is a necessary paradigm shift in security and development.   Software Defects are costly to fix and introduce vulnerabilities that can expose organisations to fraud, theft, compromised information, loss of system availability and industrial espionage to name a few.

CodeScan provides a method of assurance in applications integrity and security and provides an upfront method of mitigating risks introduced during development.  More
 
 
CodeScan Labs © 2008 | Privacy Policy | Terms Of Use | Site Map