Published: 17 August 2015
Summary
Global-scale scandals around applications' breaches make application security testing mandatory to ensure that applications will resist attacks. This research, which targets CISOs and security managers, analyzes major AST providers' critical capabilities applied against most essential use cases.
Included in Full Research
- Critical Capabilities Use-Case Graphics
- Vendors
- Acunetix
- Appthority
- Checkmarx
- Cigital
- Contrast Security
- HP
- IBM
- NSFOCUS
- N-Stalker
- PortSwigger
- Pradeo
- Qualys
- Rapid7 (NTO)
- SiteLock
- Synopsys
- Trustwave
- Veracode
- Virtual Forge
- WhiteHat Security
- Context
- Product/Service Class Definition
- Critical Capabilities Definition
- Dynamic AST as a Tool
- Dynamic AST as a Service
- Static AST as a Tool
- Static AST as a Service
- Interactive AST
- Mobile AST
- Enterprise-Class AST
- Stand-Alone AST
- WAF/EMM Integration or RASP
- Use Cases
- Enterprise Uses Its Own AST Tools
- Enterprise Consumes AST as a Service
- Manual Web Penetration Testing
- Web Application Security Testing
- Application Code Testing
- Web Application Behavioral Testing/Self-Testing
- Mobile App Testing
- Vendors Added and Dropped
- Critical Capabilities Rating