Ecommerce, Software Security Issues : Most security solutions for Internet applications are focused on the production environment, checking and controlling security issues after applications are in production. They do little, however, to build security into applications from the start. DevPartner SecurityChecker is a powerful security analysis tool that quickly scans, locates and fixes known and potential security vulnerabilities in ASP.NET applications written in either C# or Visual Basic .NET.

---

An Expert Application Security Advisor

Most security solutions for Internet applications are focused on the production environment, checking and controlling security issues after applications are in production. They do little, however, to build security into applications from the start.

Developers now need a security assessment tool that can quickly detect, assess and record security vulnerabilities--and pinpoint their location in source code—in development and QA environments.

DevPartner SecurityChecker is just the solution: a powerful security analysis tool that quickly scans, locates and fixes known and potential security vulnerabilities in ASP.NET applications written in either C# or Visual Basic .NET. DevPartner SecurityChecker automates detection processes through a combination of runtime, compile-time and integrity analyses that pinpoint the exact location of vulnerable source code and hard-to-find security problems.

As noted in a recent industry report, over 70 percent of attacks against a company’s network come at the application layer, not the network or system layer. DevPartner SecurityChecker is therefore unmatched; no other product provides critical runtime analysis for evaluating inner-layer security concerns with fast, accurate results.

Register for free trial of DevPartner SecurityChecker.

What's new in DevPartner SecurityChecker 2.5

• Downloadable updates
• New vulnerability rules
• Enhanced reporting
• Team System integration
• Terminal services

Discover, analyze, resolve and repair

DevPartner SecurityChecker guides you through its three distinct operational phases:

• The Discovery phase lets you choose either manual or automatic discovery, specify the solution to be analyzed, choose which types of analysis to use (compile-time, runtime, integrity, or any combination), create a discovery map to define specific portions of the application for analysis (or use an existing one) and start the analysis session.
• The Analysis phase shows you a high-level graph and report of your application’s vulnerabilities, a detailed list of each issue found ranked by severity, an explanation of the vulnerability and its source code, if applicable.
• The Advisor phase provides you with a description, contextual information and a suggested repair for each vulnerability found, including references to trusted sources such as the Microsoft Developer Network, the Open Web Application Security Project (OWASP), CERT and various security publications.

Key benefits

Compared to the labor and expense of trying to correct security vulnerabilities detected in production environments, DevPartner SecurityChecker gives you unprecedented application security right from the start:

• Reduced development costs: Security vulnerabilities are identified early in the application development life cycle as soon as the code can be compiled—enabling you to mitigate security risks early and inexpensively.
• Development best practices: Application developers quickly acquire the necessary security expertise to quickly find and fix complex and hard-to-find security vulnerabilities.
• Improved application quality: DevPartner SecurityChecker can locate security vulnerabilities that manual code inspection techniques and other automated—but less comprehensive—tools simply can’t find. That means you can find and fix security bugs long before a hacker has a chance.


Register for free trial of DevPartner SecurityChecker.