NT OBJECTives, Inc., provider of the most automated, comprehensive and accurate web application security software, application security testing services and SaaS, announced today that its NTOSpider On-Demand scanning service now includes continuous scanning and site monitoring providing security professionals with an automated hands-off approach that automatically conducts a comprehensive test when an application changes. The new capability constantly monitors for changes in web applications and automatically re-scans the entire application to determine if any vulnerabilities exist as a result of the changes.
“By their nature, web applications are constantly changing, leaving security teams pressed to keep up with the security testing of newly changed web applications,” Dan Kuykendall, co-CEO and CTO of NT OBJECTives. “But in the interest of time and resources, they are only testing the part of the application that has been changed, and in some case may not know about the change, leaving it completely untested. Not testing changes at all can certainly result in security vulnerabilities, but its important to note that partial application security testing is also ineffective. Changes in one piece of an application can have a cascading effect, directly compromising the security of other parts of the application.”
NTOSpider On-Demand’s continuous scanning feature can be used during regular intervals as determined by the user, in most cases, quarterly, but as frequently as necessary. The program monitors for any change in the web application; when a change is detected, the entire application, and not simply the changed input, is automatically scanned and any issues are reported. This improved application security testing feature alleviates security teams of the need to monitor changes in the hundreds or thousands of applications an organization may own.
NTOSpider On-Demand is a cloud-based platform that enables organizations to efficiently engage in application security testing on an unprecedented number of web applications, while controlling scanning costs and optimizing accuracy. This flexibility and control enables enterprises to initiate comprehensive scans without installing or managing software. It also allows enterprises to initiate application assessments for selected applications, configure and execute the assessments and generate interactive, in-depth management reports. Its SaaS delivery has quickly become a preferred approach for enterprise application security teams that lack the time, budget and security staff to implement in-house web application security programs. For more information on the NTOSpider On-Demand Continuous Site Monitoring feature visit here
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.